Cross-Site Request Forgery (CSRF) vulnerability leading to Arbitrary Options Update discovered by Chloe Chamberland (Wordfence) in WordPress Login/Signup Popup plugin (versions <= 2.2).
Update the WordPress Login/Signup Popup plugin to the latest available version (at least 2.3).
CPE | Name | Operator | Version |
---|---|---|---|
login/signup popup | le | 2.2 |