Csomagpontok és szállítási címkék WooCommerce-hez by Viszt Péter <= 1.9.0.2 - CSRF
LANACOMMONVDB ID: e82edef4-0dca-4ac6-bf93-561d616777b2
The plugin is lacking Cross-Site Request Forgery (CSRF) check in various AJAX actions, which could allow attackers to make logged in Shop Managers and above perform unwanted actions, such as deactivate the plugin's license.