Index: /controller/wpsg_AdminController.class.php
===================================================================
--- /controller/wpsg_AdminController.class.php	(revision 7536)
+++ /controller/wpsg_AdminController.class.php	(revision 7537)
@@ -2113,6 +2113,7 @@
 			}
 			
-			else if (@$_REQUEST['subaction'] == 'extended')
-			{
+			else if (@$_REQUEST['subaction'] == 'extended') {
+				
+				\check_admin_referer('wpsg-save-admin-extended');
 
 			    $this->update_option('wpsg_salt', $_REQUEST['wpsg_salt'], false, false, WPSG_SANITIZE_TEXTFIELD);
Index: /views/admin/extended.phtml
===================================================================
--- /views/admin/extended.phtml	(revision 7536)
+++ /views/admin/extended.phtml	(revision 7537)
@@ -19,5 +19,7 @@
 <div class="wpsg_admin_content form-horizontal">
 	<form name="form1" method="post" enctype="multipart/form-data" action="<?php echo wpsg_hspc(WPSG_URL_WP.'wp-admin/admin.php?page=wpsg-Admin&subaction=extended&noheader=1'); ?>">
-	
+		
+		<?php \wp_nonce_field('wpsg-save-admin-extended'); ?>
+		
 		<div class="panel panel-default">
   			<div class="panel-heading clearfix">