Teckel

**Name of the Vulnerable Software and Affected Versions** Minify HTML plugin for WordPress versions prior to 2.1.13 **Description** The Minify HTML plugin for WordPress is susceptible to a Cross-Site Request Forgery (CSRF) issue. This is caused by inadequate or missing nonce validation within the `minify html menu options` function. An unauthenticated attacker could potentially modify plugin settings by tricking a site administrator into performing an action, such as clicking a malicious link. **Recommendations** Update the Minify HTML plugin to version 2.1.13 or later.