WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL. A cross-site request forgery vulnerability exists in WordPress Sygnoos Popup Builder 4.1.11 and prior versions, which arises from a web application that does not adequately validate that a request is coming from a trusted user. The vulnerability can be exploited to spoof a malicious request to trick a victim into clicking on it to perform a sensitive action.
CPE | Name | Operator | Version |
---|---|---|---|
wordpress sygnoos popup builder | le | 4.1.11 |