WordPress · Icegram Email Subscribers & Newsletters · CVE-2020-5767
**Name of the Vulnerable Software and Affected Versions**
Icegram Email Subscribers & Newsletters Plugin for WordPress version 4.4.8
**Description**
The issue allows a remote attacker to send forged emails by tricking legitimate users into clicking a crafted link, due to cross-site request forgery.
**Recommendations**
For Icegram Email Subscribers & Newsletters Plugin for WordPress version 4.4.8, update to a newer version that contains a fix for this issue.