The handl-utm-grabber plugin prior to 2.6.5 for WordPress has CSRF via add_option and update_option.
haktansuren handl utm grabber