CSRF flaw in WordPress potentially allowed the hack of websites
Security Affairs
MARCH 14, 2019
An attacker can hack a website running a vulnerable version of WordPress that has comments enabled by tricking an administrator of a target site into visiting a website set up by the attacker. This means an attacker can create comments in the name of administrative users of a WordPress blog via CSRF attacks.
Let's personalize your content