CVE 2024-25982
The link to update all installed language packs did not include the necessary token to prevent a CSRF risk.
See the
CVE page on Mitre.org
for more details.
The link to update all installed language packs did not include the necessary token to prevent a CSRF risk.