adding enhanced csrf protection

app-code/api/account/update_user_data.php

@@ -2,6 +2,7 @@
 include "../utils/security.php";
 secure_session_start();
 require_same_origin_request();
+require_csrf_token();
 header('Content-Type: application/json');
 
 // Check if the user is logged in