CVE-2018-5656

Name of the Vulnerable Software and Affected Versions weblizar-pinterest-feeds plugin version 1.1.1

Description A security issue was found in the weblizar-pinterest-feeds plugin for WordPress, where a CSRF vulnerability exists. This can be exploited via the "wp-admin/admin-ajax.php" API endpoint.

Recommendations For weblizar-pinterest-feeds plugin version 1.1.1, consider updating to a newer version that addresses this issue, as using an outdated version poses a significant risk. As a temporary workaround, restrict access to the "wp-admin/admin-ajax.php" endpoint to minimize the risk of exploitation.