WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a blogging platform developed using the PHP language. WordPress plugin is an application plugin. WordPress Mobile browser color select plugin version 1.0.1 and prior versions are vulnerable to cross-site request forgery, which stems from a missing or incorrect random number validation on the admin_ update_data() function is missing or incorrectly validated with a random number. An unauthenticated attacker could use this vulnerability to inject malicious web scripts via forged requests.
CPE | Name | Operator | Version |
---|---|---|---|
wordpress mobile browser color select plugin | lt | 1.0.1 |