AI Score
Confidence
High
EPSS
Percentile
9.0%
Description The plugin does not have CSRF checks in some places, which could allow attackers to make logged in admins edit downloads via a CSRF attack
Make an admin open an HTML file containing the following: