Weaknesses of type CWE-352
5,719 resultsCVE-2025-31690HIGHCache Utility - Moderately critical - Cross Site Request Forgery - SA-CONTRIB-2025-019EPSS 0.2%CVE-2023-46777MEDIUMWordPress Feather Login Page Plugin <= 1.1.3 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.2%CVE-2023-41667MEDIUMWordPress WP-dTree Plugin <= 4.4.5 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.2%CVE-2023-45836MEDIUMWordPress Ultimate Taxonomy Manager Plugin <= 2.0 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.2%CVE-2024-33829MEDIUMidccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /admin/readDeal.php?mudi=updateWebCache.EPSS 0.2%CVE-2023-45108MEDIUMWordPress Mailrelay Plugin <= 2.1.1 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.2%CVE-2023-45650MEDIUMWordPress HTML5 Maps Plugin <= 1.7.1.4 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.2%CVE-2023-4629MEDIUMLadiApp <= 4.4 - Cross-Site Request Forgery via save_config()EPSS 0.2%CVE-2023-38398MEDIUMWordPress Taboola Plugin <= 2.0.1 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.2%CVE-2024-1943MEDIUMYuki <= 1.3.14 - Cross-Site Request Forgery to Theme Setting ResetEPSS 0.2%CVE-2023-52216MEDIUMWordPress JS & CSS Script Optimizer Plugin <= 0.3.3 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.2%CVE-2023-37990MEDIUMWordPress Perelink Pro Plugin <= 2.1.4 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.2%CVE-2024-2326MEDIUMPretty Links – Affiliate Links, Link Branding, Link Tracking & Marketing Plugin <= 3.6.3 - Cross-Site Request Forgery to Plugin Settings UpdateEPSS 0.2%CVE-2024-32446MEDIUMWordPress Wallet System for WooCommerce plugin <= 2.5.9 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2024-32093MEDIUMWordPress Novelist plugin <= 1.2.2 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2024-32452MEDIUMWordPress Shopping Cart & eCommerce Store plugin <= 5.5.19 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2023-38512MEDIUMWordPress WpStream plugin <= 4.5.4 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2024-32097MEDIUMWordPress GEO my WordPress plugin <= 4.1 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2023-1472MEDIUMRapidLoad Power-Up for Autoptimize <= 1.7.1 - Cross-Site Request ForgeryEPSS 0.2%CVE-2024-32096MEDIUMWordPress WP Synchro plugin <= 1.11.2 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%