Khromov

**Name of the Vulnerable Software and Affected Versions** wp-english-wp-admin Plugin versions prior to 1.5.2 **Description** A vulnerability was found in the wp-english-wp-admin Plugin, affecting the `register endpoints` function of the file english-wp-admin.php. This issue leads to cross-site request forgery and can be launched remotely. **Recommendations** To address this issue, upgrade to version 1.5.2 or later. As a temporary workaround, consider disabling the `register endpoints` function until a patch is available. Restrict access to the vulnerable file english-wp-admin.php to minimize the risk of exploitation.