Weaknesses of type CWE-352
5,714 resultsCVE-2024-24708MEDIUMWordPress W3SPEEDSTER Plugin <= 7.19 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2024-34825MEDIUMWordPress Social Warfare plugin <= 4.4.5.1 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2023-49744MEDIUMWordPress Gift Up Gift Cards for WordPress and WooCommerce Plugin <= 2.21.3 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.2%CVE-2024-34427MEDIUMWordPress WP Favorite Posts plugin <= 1.6.8 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2023-51673MEDIUMWordPress Stylish Price List Plugin <= 7.0.17 is vulnerable to Broken Access ControlEPSS 0.2%CVE-2023-48744MEDIUMWordPress Availability Calendar Plugin <= 1.2.6 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.2%CVE-2023-36682HIGHWordPress Schema Pro Plugin <= 2.7.7 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.2%CVE-2024-34814MEDIUMWordPress Unyson plugin <=2.7.29 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2025-3687MEDIUMmisstt123 oasys Sticky Notes cross-site request forgeryEPSS 0.2%CVE-2023-49824MEDIUMWordPress Product Catalog Feed by PixelYourSite Plugin <= 2.1.1 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.2%CVE-2024-34823MEDIUMWordPress Arigato Autoresponder and Newsletter plugin <= 2.7.2.3 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2022-47165MEDIUMWordPress CoSchedule Plugin <= 3.3.8 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.2%CVE-2024-34827MEDIUMWordPress Translate Multilingual sites – TranslatePress plugin <= 2.7.5 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2022-46794MEDIUMWordPress WooCommerce Weight Based Shipping Plugin <= 5.4.1 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.2%CVE-2025-8992MEDIUMmtons mblog cross-site request forgeryEPSS 0.2%CVE-2025-31723MEDIUMA cross-site request forgery (CSRF) vulnerability in Jenkins Simple Queue Plugin 1.4.6 and earlier allows attackers to change and reset the EPSS 0.2%CVE-2025-7078MEDIUM07FLYCMS/07FLY-CMS/07FlyCRM cross-site request forgeryEPSS 0.2%CVE-2022-36358MEDIUMWordPress SEO Scout plugin <= 0.9.83 - Cross-Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2024-56206HIGHWordPress gap-hub-user-role. plugin <= 3.4.1 - CSRF to Broken Authentication vulnerabilityEPSS 0.2%CVE-2022-45364MEDIUMWordPress Drag and Drop Multiple File Upload – Contact Form 7 Plugin <= 1.3.6.5 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.2%