TikiWiki 21.2 allows to edit templates without the use of a CSRF protection.
CVE-2020-29254 TikiWiki 212 allows to edit templates without the use of a CSRF protection ========================== Cross-Side-Request-Forgery (CSRF): TikiWiki 212 allows to edit templates without the use of a CSRF protection This could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack and perform arbitrary actions on an affect