WordPress and others are products of the WordPress Foundation. WordPress is a set of blogging platforms developed using the PHP language. Xtend and others are products of the Eclipse Foundation. Xtend is a general-purpose high-level programming language for the Java Virtual Machine. WordPress plugin is an application plugin. WordPress Admin Management Xtended plugin version before 2.4.5 has cross-site request forgery vulnerability, the vulnerability originated from the plugin in some AJAX operations did not do CSRF checks, the attacker can use the vulnerability to cause the post status (draft, published), slug, post date, comment status (enabled, disabled), etc. changes.