Kraken.io Image Optimizer < 2.6.6 - Settings Update via CSRF

Description

The plugin does not have CSRF check when updating its settings, which could allow attackers to make logged in admin change them via a CSRF attack