Description
WordPress Plugin WP RSS Aggregator-News Feeds, Autoblogging, Youtube Video Feeds and More is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to perform otherwise restricted actions and subsequently delete any posts. WordPress Plugin WP RSS Aggregator-News Feeds, Autoblogging, Youtube Video Feeds and More version 4.6.3 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 4.6.4 or latest
References
Related Vulnerabilities
WordPress Plugin Google SEO Pressor for Rich snippets Cross-Site Scripting (1.2.6)
WordPress Plugin Blue Wrench Video Widget Cross-Site Request Forgery (1.0.5)
WordPress Plugin WP CleanFix Cross-Site Request Forgery (2.4.4)
WordPress Plugin Store Locator Plus for WordPress Multiple Vulnerabilities (3.0.1)