The plugin does not have CSRF checks in some places, which could allow attackers to make logged in admins to reset and change the plugin’s quick language translation, general and channel settings via CSRF attacks
CPE | Name | Operator | Version |
---|---|---|---|
yourchannel | lt | 1.2.6 |