WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a set of blogging platforms developed using the PHP language. WordPress plugin is an application plugin. WordPress Kraken.io Image Optimizer 2.6.5 and earlier versions are vulnerable to cross-site request forgery. The vulnerability stems from the WEB application not adequately verifying that the request is from a trusted user. An attacker could use the vulnerability to spoof malicious requests to trick victims into clicking through to perform sensitive actions.
CPE | Name | Operator | Version |
---|---|---|---|
wordpress kraken.io image optimizer | le | 2.6.5 |