CVE-2017-8100by Jeremyin Security Bulletinson Posted on April 24, 2017 There is CSRF in the CopySafe Web Protection plugin before 2.6 for WordPress, allowing attackers to change plugin settings.