Cross-Site Request Forgery (CSRF) vulnerability leading to CPT base deletion discovered by Ex.Mi (Patchstack) in WordPress Remove CPT base plugin (versions <= 5.8).
Update the WordPress Remove CPT base plugin to the latest available version (at least 5.9).