The plugin does not have CSRF check when resetting library settings, allowing attackers to make a logged in admin reset arbitrary settings via a CSRF attack
https://example.com/wp-admin/admin.php?page=link-library-settingssets&settings=1&reset=1
Krzysztof Zając
Krzysztof Zając
Yes
2021-12-30 (about 1 years ago)
2021-12-30 (about 1 years ago)
2022-04-16 (about 9 months ago)