Full title: Wordpress Developer Formatter CSRF Vulnerability Category: web applications Platform: php Wordpress Developer Formatter suffers from a cross site request forgery vulnerability which can be used to add persistent XSS into posts which could then lead to cookie stealing, malware distribution or even a defacement # 0day.today @ http://0day.today/