WordPress Convert Plus Plugin Cross-Site Request Forgery

A cross-site request forgery vulnerability exists in WordPress Convert Plus Plugin. A remote unauthenticated attacker can exploit this vulnerability by sending a maliciously crafted HTTP request to a target server.

You can read the full article here.