Cross-Site Request Forgery (CSRF) vulnerability found by Jonas Lejon (WPScans) in WordPress Loginizer plugin version 1.3.5 and earlier versions. The vulnerability exists in the init.php file of the “Blacklist and Whitelist IP Wizard.”
Update the WordPress Loginizer plugin to the latest available version (at least 1.3.6).