WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a set of blogging platforms developed using the PHP language. WordPress plugin is an application plugin. WordPress plugin Popup by Supsystic version 1.7.6 contains a cross-site request forgery vulnerability that could be exploited by an attacker to make administrators click on specially crafted links or access malicious attacker-controlled pages. The vulnerability can be exploited to allow an administrator to click on a specially crafted link or access a page controlled by a malicious attacker.