EPSS
Percentile
28.1%
The plugin does not properly validate requests use nonces, leading to a potential Cross-Site Request Forgery vulnerability.
patchstack.com/database/vulnerability/comments-ratings/wordpress-comments-ratings-plugin-1-1-6-cross-site-request-forgery-csrf-vulnerability