CVE-2022-41134

Name of the Vulnerable Software and Affected Versions OptinlyHQ Optinly – Exit Intent, Newsletter Popups, Gamification & Opt-in Forms plugin versions 1.0.15 and earlier

Description The issue is related to Cross-Site Request Forgery (CSRF) in the OptinlyHQ Optinly plugin. CSRF is a type of attack where an attacker tricks a user into performing unintended actions on a web application that the user is authenticated to. No information is provided about the estimated number of potentially affected devices or real-world incidents where this issue was exploited.

Recommendations For OptinlyHQ Optinly – Exit Intent, Newsletter Popups, Gamification & Opt-in Forms plugin versions 1.0.15 and earlier, update to a version later than 1.0.15 to resolve the issue.