WordPress · Video Playlist/Gallery Plugin · CVE-2015-10109
**Name of the Vulnerable Software and Affected Versions**
Video Playlist and Gallery Plugin versions up to 1.136
**Description**
A problem was found in the Video Playlist and Gallery Plugin. It affects some unknown functionality of the file `wp-media-cincopa.php`. The issue leads to cross-site request forgery. The attack can be launched remotely.
**Recommendations**
For Video Playlist and Gallery Plugin versions up to 1.136, upgrade to version 1.137 to address this issue.