According to the original researcher, no CSRF nonces were present and therefore could be exploited by chaining with the CSRF issue.
Magnus K. Stubman
Ryan Dewhurst
No
2019-05-22 (about 4 years ago)
2019-05-22 (about 4 years ago)
2020-09-22 (about 2 years ago)