Description
The link to reset all templates of a database activity did not include the necessary token to prevent a CSRF risk.
Remediation
References
Related Vulnerabilities
WordPress Plugin Global Content Blocks Cross-Site Request Forgery (2.1.5)
WordPress Plugin WP Forum Server Cross-Site Scripting and SQL Injection Vulnerabilities (1.7.3)
WordPress Plugin Yes/No Chart SQL Injection (1.0.11)
WordPress Plugin MemberSonic Lite Security Bypass (1.2)
Squid Improper Input Validation Vulnerability (CVE-2021-33620)