Weaknesses of type CWE-352

5,719 results
CVE-2024-32436MEDIUMWordPress Gift Cards plugin <= 4.4.0 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2024-10521MEDIUMWordPress Contact Forms by Cimatti <= 1.9.2 - Cross-Site Request Forgery via process_bulk_action FunctionEPSS 0.2%CVE-2024-32084MEDIUMWordPress Before And After plugin <= 3.9 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2025-32247MEDIUMWordPress AI Content Creator plugin <= 1.2.6 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2025-32248MEDIUMWordPress SwiftXR (3D/AR/VR) Viewer plugin <= 1.0.7 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2024-32102MEDIUMWordPress Crony Cronjob Manager plugin <= 0.5.0 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2024-1360MEDIUMColibri WP <= 1.0.94 - Cross-Site Request Forgery to Limited Plugin InstallationEPSS 0.2%CVE-2024-32434MEDIUMWordPress Order Delivery Date for WooCommerce plugin <= 3.20.2 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2024-54419MEDIUMWordPress Ui Slider Filter By Price plugin <= 1.1 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2024-32099MEDIUMWordPress WP Mail Catcher plugin <= 2.1.6 - Cross Site Request Forgery vulnerabilityEPSS 0.2%CVE-2024-32089MEDIUMWordPress Digital Publications by Supsystic plugin <= 1.7.7 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2024-32088MEDIUMWordPress Website Builder plugin <= 6.15.20 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2025-32249MEDIUMWordPress DirectoryPress Plugin <= 3.6.22 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2024-30518MEDIUMWordPress Custom WooCommerce Checkout Fields Editor plugin <= 1.3.0 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2024-32447MEDIUMWordPress AWP Classifieds plugin <= 4.3.1 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2026-4091MEDIUMOPEN-BRAIN <= 0.5.0 - Cross-Site Request ForgeryEPSS 0.2%CVE-2023-7048LOWMy Sticky Bar <= 2.6.6 - Cross-Site Request Forgery to Sensitive Information ExposureEPSS 0.2%CVE-2025-15405MEDIUMPHPEMS cross-site request forgeryEPSS 0.2%CVE-2020-10734A vulnerability was found in keycloak in the way that the OIDC logout endpoint does not have CSRF protection. Versions shipped with Red Hat EPSS 0.2%CVE-2024-33638MEDIUMWordPress Smart Maintenance Mode plugin <= 1.4.4 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%