Description The plugin does not have authorisation and CSRF checks when resetting and importing its settings, allowing unauthenticated users to reset them The issue was partially fixed in 2.20.29 (only adding authorisation checks). CSRF checks were added in 2.20.32
As an unauthenticated user, open https://example.com/wp-admin/admin-post.php?seraph_accel_settingsOp=reset