The plugin does not have CSRF check in place in some places, which could allow attackers to make a logged in admin perform unwanted actions
CSRF
Vlad Vector
No
2022-08-01 (about 6 months ago)
2022-08-24 (about 5 months ago)