Description The plugin does not have CSRF check in place when bulk deleting modals, which could allow attackers to make a logged in admin delete them via a CSRF attack
Have a logged in admin open an HTML file containing where ID
is an existing modal: action