CVE-2021-4403
The CVE-2021-4403 entry concerns the WordPress Remove Schema plugin (versions up to 1.5). The root cause is missing/incorrect nonce validation in the validate() function, enabling CSRF where unauthenticated attackers could modify plugin settings via a forged request if a site admin is tricked int...