WordPress is a set of blogging platforms developed by the Wordpress Foundation using the PHP language. WordPress plugin is a WordPress open source application plugin. WordPress Translate WordPress with GTranslate plugin version 2.9.9 is vulnerable to cross-site request forgery. The vulnerability stems from the absence of CSRF checks in certain files, which can write debugging data (such as a user’s cookie) to publicly accessible files if specific parameters are used in the request. An attacker could use this vulnerability to access a logged-in administrator cookie by opening a malicious link or page.
CPE | Name | Operator | Version |
---|---|---|---|
WordPress Translate WordPress with GTranslate plugin | lt | 2.9.9 |