The plugin does not have proper Cross-Site Request Forgery (CSRF) check in some places, which could allow attackers to make logged in admins perform unwanted actions via Cross-Site Request Forgery (CSRF) attacks.
URL Shortener by MyThemeShop <=1.0.17 - CSRF
LANACOMMONVDB ID: 92e097ff-c54b-480c-ae1e-fe5e2ae46737