Weaknesses of type CWE-352
5,716 resultsCVE-2024-31430MEDIUMCross-Site Request Forgery (CSRF) vulnerability in realmag777 BEAR and WOLF WordPress pluginsEPSS 0.2%CVE-2022-44389MEDIUMEyouCMS V1.5.9-UTF8-SP1 was discovered to contain a Cross-Site Request Forgery (CSRF) via the Edit Admin Profile module. This vulnerability EPSS 0.2%CVE-2023-52184MEDIUMWordPress WP Job Portal Plugin <= 2.0.6 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.2%CVE-2024-39163HIGHbinux pyspider up to v0.3.10 was discovered to contain a Cross-Site Request Forgery (CSRF) via the Flask endpoints.EPSS 0.2%CVE-2025-0393MEDIUMRoyal Elementor Addons and Templates <= 1.7.1006 - Cross-Site Request Forgery to Reflected Cross-Site ScriptingEPSS 0.2%CVE-2024-41344HIGHA Cross-Site Request Forgery (CSRF) in Codeigniter 3.1.13 allows attackers to arbitrarily change the Administrator password and escalate priEPSS 0.2%CVE-2024-12219MEDIUMStop Registration Spam <= 1.23 - Cross-Site Request Forgery to Cross-Site ScriptingEPSS 0.2%CVE-2023-52136MEDIUMWordPress Custom Twitter Feeds (Tweets Widget) Plugin <= 2.1.2 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.2%CVE-2026-4315HIGHWatchGuard Firebox Cross-Site Request Forgery (CSRF) in Fireware Web UIEPSS 0.2%CVE-2023-52119MEDIUMWordPress Icegram Plugin <= 3.1.18 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.2%CVE-2023-52122MEDIUMWordPress Simple Job Board Plugin <= 2.10.6 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.2%CVE-2024-54306MEDIUMWordPress AIKCT Engine Chatbot, ChatGPT, Gemini, GPT-4o Best AI Chatbot plugin <= 1.6.2 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2023-51538MEDIUMWordPress Awesome Support Plugin <= 6.1.5 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.2%CVE-2025-50902HIGHCross Site Request Forgery (CSRF) vulnerability in old-peanut Open-Shop (aka old-peanut/wechat_applet__open_source) thru 1.0.0 allows attackEPSS 0.2%CVE-2024-35773HIGHWordPress Comment Reply Email plugin <= 1.3 - CSRF to Stored XSS vulnerabilityEPSS 0.2%CVE-2023-30607MEDIUMicingaweb2-module-jira template and field configuration are susceptible to CSRFEPSS 0.2%CVE-2023-52128MEDIUMWordPress White Label Plugin <= 2.9.0 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.2%CVE-2023-44260MEDIUMWordPress Woocommerce ESTO Plugin <= 2.23.1 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.2%CVE-2024-10819HIGHCSRF to XSS in binary-husky/gpt_academicEPSS 0.2%CVE-2024-37251MEDIUMWordPress Advanced Custom Fields Pro plugin < 6.3.2 - Cross-Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%