0.001 Low
EPSS
Percentile
32.7%
The plugin does not have CSRF checks when updating its menu items, which could allow attackers to make logged in admins update menu items via a CSRF attack