Brovy <= 1.3 is vulnerable to Cross-Site Request Forgery (CSRF) leading to Arbitrary Plugin Activation/Deactivation

Cross-Site Request Forgery (CSRF) leading to Arbitrary Plugin Activation/Deactivation