EPSS
Percentile
70.9%
Cross-Site Request Forgery vulnerability found by wpl0v3r in WordPress ImageInject plugin (version 1.15). Vulnerable via wp-admin/options-general.php.
1/9/2018 - we were unable to find a patched version of the plugin. Dangerous to use.
wordpress.org/plugins/wp-inject/#developers