[rdiffweb] rdiffweb vulnerable to Cross-Site Request Forgery

rdiffweb prior to version 2.5.4 is vulnerable to Cross-Site Request Forgery (CSRF).

References

• https://nvd.nist.gov/vuln/detail/CVE-2022-4646
• https://github.com/ikus060/rdiffweb/commit/e6f0d8002129be90fe82fa3e3ea0a6942caba398
• https://huntr.dev/bounties/17bc1b0f-1f5c-432f-88e4-c9866ccf6e10
• https://github.com/advisories/GHSA-85fp-523q-5xwc