Weaknesses of type CWE-352
5,714 resultsCVE-2023-25056MEDIUMWordPress Feed Them Social Plugin <= 3.0.2 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2023-25038MEDIUMWordPress For the visually impaired Plugin <= 0.58 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2023-26011MEDIUMWordPress Read More Excerpt Link Plugin <= 1.6 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2023-23724MEDIUMWordPress WordPress Email Marketing Plugin – WP Email Capture Plugin <= 3.9.3 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2022-46851MEDIUMWordPress Starter Templates Plugin <= 3.1.20 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2022-46813MEDIUMWordPress Advanced Database Cleaner Plugin <= 3.1.1 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2022-38077MEDIUMWordPress Popup Anything Plugin <= 2.2.1 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2022-4846MEDIUMCross-Site Request Forgery (CSRF) in usememos/memosEPSS 0.3%CVE-2023-25971MEDIUMWordPress Educare – Students & Result Management System Plugin <= 1.4.1 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2023-23704MEDIUMWordPress Comments Ratings Plugin <= 1.1.6 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2023-25487MEDIUMWordPress PixTypes Plugin <= 1.4.14 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2023-25029MEDIUMWordPress WP Social Bookmarking Light Plugin <= 2.0.7 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2023-48331MEDIUMWordPress MyBookTable Bookstore Plugin <= 3.3.4 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2022-2171—Progressive License <= 1.1.0 - CSRF to Stored XSSEPSS 0.3%CVE-2023-47792MEDIUMWordPress Big File Uploads Plugin <= 2.1.1 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2023-49749MEDIUMWordPress SureTriggers Plugin <= 1.0.23 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2025-3150MEDIUMitning Student Homework Management System cross-site request forgeryEPSS 0.3%CVE-2024-48758MEDIUMdingfanzu CMS V1.0 was discovered to contain a Cross-Site Request Forgery (CSRF) via the addPro parameter of the component doAdminAction.phpEPSS 0.3%CVE-2023-25708MEDIUMWordPress WP VR – 360 Panorama and Virtual Tour Builder For WordPress Plugin <= 8.2.7 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2024-38344MEDIUMA cross-site request forgery vulnerability exists in WP Tweet Walls versions prior to 1.0.4. If this vulnerability is exploited, an attackerEPSS 0.3%