WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a blogging platform developed using the PHP language. WordPress plugin is an application plugin. WordPress Like Button Rating plugin versions prior to 2.6.45 are vulnerable to an access control error. The vulnerability stems from improper access control and can be exploited by any authenticated attacker to send arbitrary emails with arbitrary subject and body to any recipient.