WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a set of blogging platforms developed using the PHP language. WordPress plugin is an application plugin. WordPress WP-EMail plugin versions prior to 2.69.0 are vulnerable to cross-site request forgery, which stems from a failure to protect its log deletion feature using random number checking. An attacker could exploit this vulnerability to cause logged-in administrators to delete logs.
CPE | Name | Operator | Version |
---|---|---|---|
wordpress wp-email plugin | lt | 2.69.0 |