Description
WordPress Plugin Facebook Members is prone to a cross-site request forgery vulnerability. Exploiting this issue may allow a remote attacker to perform certain administrative actions and gain unauthorized access to the affected application; other attacks are also possible. WordPress Plugin Facebook Members version 5.0.4 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 5.0.5 or latest
References
Related Vulnerabilities
Squid Out-of-bounds Write Vulnerability (CVE-2019-18676)
IBM WebSEAL Improper Restriction of Rendered UI Layers or Frames Vulnerability (CVE-2018-1803)
WordPress Plugin Backup and Restore WordPress-WPBackItUp Multiple Vulnerabilities (1.9)
ownCloud Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2013-2086)