6.5 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
24.3%
Description The plugin does not have CSRF checks in the syntatical_settings_content, which could allow attackers to make logged in users update plugin settings via CSRF attacks