Description The plugin does not have CSRF checks in some places, which could allow attackers to make logged in users perform unwanted actions via CSRF attacks
patchstack.com/database/vulnerability/novo-map/wordpress-novo-map-your-wp-posts-on-custom-google-maps-plugin-1-1-2-cross-site-request-forgery-csrf-vulnerability
www.wordfence.com/threat-intel/vulnerabilities/wordpress-plugins/novo-map/novo-map-your-wp-posts-on-custom-google-maps-112-cross-site-request-forgery