CVE-2020-36751
The CVE describes a CSRF vulnerability in the WordPress Coupon Creator plugin (up to version 3.1) caused by missing or incorrect nonce validation in the save_meta() function. This allows unauthenticated attackers to save meta fields by persuading an administrator to perform an action (e.g., click...