Weaknesses of type CWE-352
5,712 resultsCVE-2024-2288HIGHCSRF File Upload Vulnerability in parisneo/lollms-webuiEPSS 0.3%CVE-2024-13758MEDIUMCP Contact Form with PayPal <= 1.3.52 - Cross-Site Request ForgeryEPSS 0.3%CVE-2023-49076MEDIUMPimcore missing token/header to prevent CSRFEPSS 0.3%CVE-2025-5900MEDIUMTenda AC9 cross-site request forgeryEPSS 0.3%CVE-2024-33682MEDIUMWordPress WP GDPR Compliance plugin <= 2.0.23 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.3%CVE-2025-22784HIGHWordPress Background Control plugin <= 1.0.5 - CSRF to Arbitrary File Deletion vulnerabilityEPSS 0.3%CVE-2023-22689MEDIUMWordPress Auto Affiliate Links Plugin <= 6.3 is vulnerable to Broken Access ControlEPSS 0.3%CVE-2023-6326MEDIUMMaster Slider - Responsive Touch Slider <= 3.9.10 - Cross-Site Request Forgery via process_bulk_actionEPSS 0.3%CVE-2022-42435MEDIUMIBM Business Automation Workflow cross-site request forgeryEPSS 0.3%CVE-2023-25968MEDIUMWordPress Client Portal – Private user pages and login Plugin <= 1.1.8 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2023-23706MEDIUMWordPress WordPress Social Login and Register (Discord, Google, Twitter, LinkedIn) Plugin <= 7.5.14 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2023-33931MEDIUMWordPress YouTube Playlist Player Plugin <= 4.6.4 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2023-48281MEDIUMWordPress Broken Link Checker for YouTube Plugin <= 1.3 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2023-23705MEDIUMWordPress Books Gallery Plugin <= 4.4.8 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2023-26011MEDIUMWordPress Read More Excerpt Link Plugin <= 1.6 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2023-48279MEDIUMWordPress Seraphinite Post .DOCX Source Plugin <= 2.16.6 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2023-35773MEDIUMWordPress Template Debugger Plugin <= 3.1.2 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2023-25034MEDIUMWordPress WP Clean Up Plugin <= 1.2.3 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2023-24008MEDIUMWordPress Maspik – Spam blacklist Plugin <= 0.7.8 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2023-34028MEDIUMWordPress WOLF Plugin <= 1.0.7 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%