Weaknesses of type CWE-352

5,714 results
CVE-2022-47609MEDIUMWordPress DNUI Plugin <= 2.8.1 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.2%CVE-2022-32516HIGHA CWE-352: Cross-Site Request Forgery (CSRF) vulnerability exists that could cause system’s configurations override and cause a reboot loop EPSS 0.2%CVE-2023-35038MEDIUMWordPress WP PDF Generator Plugin <= 1.2.2 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.2%CVE-2024-23910MEDIUMCross-site request forgery (CSRF) vulnerability in ELECOM wireless LAN routers and wireless LAN repeater allows a remote unauthenticated attEPSS 0.2%CVE-2022-47163LOWWordPress WP CSV to Database Plugin <= 2.6 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.2%CVE-2023-27606MEDIUMWordPress WP Reroute Email Plugin <= 1.4.6 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.2%CVE-2023-34015MEDIUMWordPress Advanced Flat rate shipping Woocommerce Plugin <= 1.6.4.4 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.2%CVE-2024-42619HIGHPligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/domain_management.php?id=0&list=whitEPSS 0.2%CVE-2025-70810HIGHCross Site Request Forgery vulnerability in Phpbb phbb3 v.3.3.15 allows a local attacker to execute arbitrary code via the login function anEPSS 0.2%CVE-2023-25473MEDIUMWordPress Flickr Justified Gallery Plugin <= 3.5 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.2%CVE-2024-1334MEDIUMImageRecycle pdf & image compression <= 3.1.13 - Cross-Site Request Forgery to Settings Update in enableOptimizationEPSS 0.2%CVE-2022-41987MEDIUMWordPress BadgeOS Plugin <= 3.7.1.6 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.2%CVE-2024-0796MEDIUMActive Products Tables for WooCommerce. Professional products tables for WooCommerce store <= 1.0.6.1 - Cross-Site Request ForgeryEPSS 0.2%CVE-2023-3764MEDIUMWooCommerce PDF Invoice Builder <= 1.2.90 - Cross-Site Request Forgery via SaveEPSS 0.2%CVE-2024-56005MEDIUMWordPress Posti Shipping Plugin <= 3.10.3 - CSRF to Settings Change vulnerabilityEPSS 0.2%CVE-2024-7864MEDIUMFavicon Generator < 2.1 - Arbitrary File Deletion via CSRFEPSS 0.2%CVE-2024-23319LOWCSRF issue allows disconnecting a user's Jira connection through a simple post message (Jira Plugin)EPSS 0.2%CVE-2024-32794MEDIUMWordPress Paid Memberships Pro plugin <= 2.12.10 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2024-34439MEDIUMWordPress DS Site Message plugin <= 1.14.4 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2023-2891MEDIUMWP EasyCart <= 5.4.8 - Cross-Site Request Forgery via process_delete_productEPSS 0.2%