Weaknesses of type CWE-352
5,714 resultsCVE-2023-33931MEDIUMWordPress YouTube Playlist Player Plugin <= 4.6.4 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2024-38344MEDIUMA cross-site request forgery vulnerability exists in WP Tweet Walls versions prior to 1.0.4. If this vulnerability is exploited, an attackerEPSS 0.3%CVE-2023-36514MEDIUMWordPress WooCommerce Ship to Multiple Addresses Plugin <= 3.8.5 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2023-22674MEDIUMWordPress Dashicons + Custom Post Types Plugin <= 1.0.2 is vulnerable to Broken Access ControlEPSS 0.3%CVE-2023-25065MEDIUMWordPress WP Tabs Plugin <= 2.1.14 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2024-52401CRITICALWordPress Hacklog DownloadManager plugin <=2.1.4 - CSRF to Arbitrary File Upload vulnerabilityEPSS 0.3%CVE-2022-38063MEDIUMWordPress Social Login WP Plugin <= 5.0.0.0 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2022-40219MEDIUMWordPress FavIcon Switcher plugin <= 1.2.11 - Cross-Site Request Forgery (CSRF) vulnerabilityEPSS 0.3%CVE-2024-1211MEDIUMCross-Site Request Forgery (CSRF) in GitLabEPSS 0.3%CVE-2024-41597MEDIUMCross Site Request Forgery vulnerability in ProcessWire v.3.0.229 allows a remote attacker to execute arbitrary code via a crafted HTML fileEPSS 0.3%CVE-2020-36901HIGHUBICOD Medivision Digital Signage 1.5.1 Cross-Site Request Forgery via User ManagementEPSS 0.3%CVE-2025-32241MEDIUMWordPress Official CleverReach WooCommerce Integration plugin <= 3.4.6 - CSRF to Settings Change vulnerabilityEPSS 0.3%CVE-2023-41660MEDIUMWordPress WP Migration Plugin DB & Files – WP Synchro Plugin <= 1.9.1 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2024-29338LOWAnchor CMS v0.12.7 was discovered to contain a Cross-Site Request Forgery (CSRF) via /anchor/admin/categories/delete/2.EPSS 0.3%CVE-2023-5902MEDIUMCross-Site Request Forgery (CSRF) in pkp/pkp-libEPSS 0.3%CVE-2023-45638MEDIUMWordPress Eupago Gateway For Woocommerce Plugin <= 3.1.9 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2025-3638HIGHMoodle: csrf risk in brickfield tool's analysis request actionEPSS 0.3%CVE-2023-49843MEDIUMWordPress First Order Discount Woocommerce Plugin <= 1.21 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2023-39925MEDIUMWordPress Community by PeepSo Plugin <= 6.1.6.0 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2023-47824MEDIUMWordPress Legal Pages Plugin <= 1.3.8 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%