CVE-2021-4407
The CVE-2021-4407 issue affects the Custom Banners WordPress plugin, where Cross-Site Request Forgery is possible due to missing/incorrect nonce validation in saveCustomFields(). Versions up to and including 3.2.2 are affected. Attackers without authentication could cause changes by tricking an a...