wallabag/wallabag is vulnerable to Cross-Site Request Forgery (CSRF). The vulnerability exists due to a lack of validations in the account/delete
functionality, which allows an attacker to delete a victims account after convincing a user to click a link.