Despite reported attempts from Patchstack to contact the vendor, no response has been received, prompting the company to publish the vulnerabilities and provide protective measures for their users. “The most important thing when implementing an action or process is to apply permission or role and nonce validation.

Source: Infosecurity Magazine – Information Security & IT Security