AI Score
Confidence
High
EPSS
Percentile
24.1%
Description The plugin does not have CSRF checks when creating and deleting theme files as well as reseting settings, which could allow attackers to make logged in admins perform such actions via CSRF attacks