CVE-2020-35950
An issue was discovered in the XCloner Backup and Restore plugin before 4.2.153 for WordPress. It allows CSRF (via almost any endpoint).
Date published : 2020-12-31
https://wpscan.com/vulnerability/10413
Critical Vulnerabilities Patched in XCloner Backup and Restore Plugin