6.5 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
24.1%
Description The plugin does not have CSRF checks when updating its Theme, CSS, Minify and Preprocessor data, which could allow attackers to make logged in admins perform such actions via CSRF attacks