diff --git a/lib/plugins/styling/admin.php b/lib/plugins/styling/admin.php
index 9720e16d53..08c9afdc29 100644
--- a/lib/plugins/styling/admin.php
+++ b/lib/plugins/styling/admin.php
@@ -34,6 +34,7 @@ public function handle()
         global $INPUT;
         $run = $INPUT->extract('run')->str('run');
         if (!$run) return;
+        if(!checkSecurityToken()) return;
         $run = 'run'.ucfirst($run);
         $this->$run();
     }
@@ -76,6 +77,7 @@ public function form()
             echo $this->locale_xhtml('intro');
 
             echo '<form class="styling" method="post" action="'.$target.'">';
+            formSecurityToken();
 
             echo '<table><tbody>';
             foreach ($replacements as $key => $value) {