0.001 Low
EPSS
Percentile
29.7%
The plugin does not have CSRF checks in multiple actions, which could allow attackers to make logged in users perform them via CSRF attacks