Weaknesses of type CWE-352
5,714 resultsCVE-2023-6137MEDIUMWordPress Frontier Post Plugin <= 6.1 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2023-46636MEDIUMWordPress Custom Header Images Plugin <= 1.2.1 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2023-45638MEDIUMWordPress Eupago Gateway For Woocommerce Plugin <= 3.1.9 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2022-35611MEDIUMA Cross-Site Request Forgery (CSRF) in MQTTRoute v3.3 and below allows attackers to create and remove dashboards.EPSS 0.3%CVE-2022-40632MEDIUMWordPress wpForo Forum plugin <= 2.0.5 - Cross-Site Request Forgery (CSRF) vulnerabilityEPSS 0.3%CVE-2024-35770MEDIUMWordPress Vimeography plugin <= 2.4.1 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.3%CVE-2021-45785MEDIUMTruDesk Help Desk/Ticketing Solution v1.1.11 is vulnerable to a Cross-Site Request Forgery (CSRF) attack which would allow an attacker to reEPSS 0.3%CVE-2023-49853MEDIUMWordPress PayTR Taksit Tablosu Plugin <= 1.3.1 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2023-6689HIGHCross-Site Request Forgery in EFACEC BCU 500EPSS 0.3%CVE-2023-46619MEDIUMWordPress Spider Facebook Plugin <= 1.0.15 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2023-47785HIGHWordPress LayerSlider Plugin <= 7.7.9 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2023-49854MEDIUMWordPress Caddy Plugin <= 1.9.7 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2023-49834MEDIUMWordPress WOOCS – WooCommerce Currency Switcher Plugin <= 1.4.1.4 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2023-48330MEDIUMWordPress Bulk Comment Remove Plugin <= 2 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2023-47669MEDIUMWordPress Profile Builder Plugin <= 3.10.3 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2023-40201MEDIUMWordPress Futurio Extra Plugin <= 1.8.4 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2024-50966CRITICALdingfanzu CMS V1.0 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /admin/doAdminAction.php?act=addAdmin.EPSS 0.3%CVE-2023-33214MEDIUMWordPress Taggbox Plugin <= 3.1 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2023-4959MEDIUMQuay: cross-site request forgery (csrf) on config-editor pageEPSS 0.3%CVE-2023-23791MEDIUMWordPress HT Menu Plugin <= 1.2.1 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%