AI Score
Confidence
High
EPSS
Percentile
24.1%
Description The plugin does not have CSRF checks when managing highlighting blocks, which could allow attackers to make logged in admins update, create, duplicate and delete them via CSRF attacks