WordPress is a set of blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL. WordPress plugin Collaboration E-mails 2.2.0 and earlier versions are vulnerable to cross-site request forgery, which stems from a lack of random number checking. An attacker could use the vulnerability to change its settings, which could be used to lower the required user level, change the text, the email address used, etc.
CPE | Name | Operator | Version |
---|---|---|---|
wordpress collaboration e-mails plugin | lt | 2.2.0 |