CVE-2020-36334
themegrill-demo-importer before 1.6.3 allows CSRF, as demonstrated by wiping the database.
Date published : 2021-05-04
https://www.openwall.com/lists/oss-security/2020/02/19/1
https://www.webarxsecurity.com/critical-issue-in-themegrill-demo-importer/