WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a set of blogging platforms developed using the PHP language. WordPress plugin is an application plugin. WordPress HC Custom WP-Admin URL plugin version 1.4 and earlier versions are vulnerable to cross-site request forgery, which stems from a CSRF check not performed when updating its settings. An attacker could use this vulnerability to cause the logged-in administrator to change the login URL.
CPE | Name | Operator | Version |
---|---|---|---|
wordpress hc custom wp-admin url plugin | lt | 1.4 |