CVE-2020-36747
CVE-2020-36747 : The Lightweight Sidebar Manager WordPress plugin is vulnerable to Cross-Site Request Forgery due to missing/incorrect nonce validation in the metabox_save() function, affecting versions up to 1.1.4. An unauthenticated attacker could craft a request that, if a site admin visits it...