Weaknesses of type CWE-352
5,714 resultsCVE-2022-3025MEDIUMBitcoin / Altcoin Faucet <= 1.6.0 - Settings Update to Stored XSS via CSRFEPSS 0.2%CVE-2024-0514MEDIUMRoyal Elementor Addons and Templates <= 1.3.87 - Cross-Site Request Forgery via add_to_compareEPSS 0.2%CVE-2025-25927MEDIUMA Cross-Site Request Forgery (CSRF) in Openmrs 2.4.3 Build 0ff0ed allows attackers to execute arbitrary operations via a crafted GET requestEPSS 0.2%CVE-2024-39639MEDIUMWordPress File Upload plugin <= 4.24.7 - Broken Access Control + CSRF vulnerabilityEPSS 0.2%CVE-2024-43945MEDIUMWordPress LatePoint plugin <= 4.9.91 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2024-13753HIGHUltimate Classified Listings <= 1.5 - Cross-Site Request Forgery to Account TakeoverEPSS 0.2%CVE-2024-34439MEDIUMWordPress DS Site Message plugin <= 1.14.4 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2025-68722HIGHAxigen Mail Server before 10.5.57 and 10.6.x before 10.6.26 contains a Cross-Site Request Forgery (CSRF) vulnerability in the WebAdmin interEPSS 0.2%CVE-2024-28669MEDIUMDedeCMS v5.7 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /dede/freelist_edit.php.EPSS 0.2%CVE-2024-11143MEDIUMKognetiks Chatbot for WordPress <= 2.1.8 - Cross-Site Request Forgery to Authenticated (Subscriber+) Assistant ModificationEPSS 0.2%CVE-2023-0832MEDIUMUnder Construction <= 3.96 - Cross-Site Request Forgery via admin_action_install_weglotEPSS 0.2%CVE-2026-4090MEDIUMInquiry cart <= 3.4.2 - Cross-Site Request Forgery via Settings FormEPSS 0.2%CVE-2024-53829HIGHCross-Site Request Forgery in CodeChecker APIEPSS 0.2%CVE-2022-40131MEDIUMWordPress Page View Count plugin <= 2.5.5 - Cross-Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2024-31374MEDIUMWordPress AppPresser plugin <= 4.3.0 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2023-38001MEDIUMIBM Aspera Orchestrator cross-site request forgeryEPSS 0.2%CVE-2022-43488MEDIUMWordPress Advanced Dynamic Pricing for WooCommerce plugin <= 4.1.5 - Cross-Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2024-0522MEDIUMAllegro RomPager HTTP POST Request cross-site request forgeryEPSS 0.2%CVE-2023-3841MEDIUMNxFilter user.jsp cross-site request forgeryEPSS 0.2%CVE-2024-28681MEDIUMDedeCMS v5.7 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /dede/plus_edit.php.EPSS 0.2%