6.5 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
24.2%
Description The plugin does not have CSRF checks when updating allowed IP addresses and reseting connection key, which could allow attackers to make logged in admins perform such actions via CSRF attacks