The wps-hide-login plugin before 1.1 for WordPress has CSRF that affects saving an option value.Referenceshttps://wpvulndb.com/vulnerabilities/8011https://wordpress.org/plugins/wps-hide-login/#developers
