Weaknesses of type CWE-352

5,719 results
CVE-2023-45647MEDIUMWordPress Constant Contact Forms by MailMunch Plugin <= 2.0.10 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.2%CVE-2024-37230MEDIUMWordPress Book Landing Page theme <= 1.2.3 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2023-37973MEDIUMWordPress Replace Word Plugin <= 2.1 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.2%CVE-2024-11419MEDIUMPassword for WP <= 1.5 - Cross-Site Request Forgery to Stored Cross-Site ScriptingEPSS 0.2%CVE-2023-41668MEDIUMWordPress Leadster Plugin <= 1.1.2 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.2%CVE-2024-22143MEDIUMWordPress WP Spell Check Plugin <= 9.17 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.2%CVE-2023-3055MEDIUMPage Builder by AZEXO <= 1.27.133 - Cross-Site Request Forgery to Stored Cross-Site Scripting via azh_saveEPSS 0.2%CVE-2023-41693MEDIUMWordPress MyCryptoCheckout Plugin <= 2.125 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.2%CVE-2025-1358MEDIUMPix Software Vivaz cross-site request forgeryEPSS 0.2%CVE-2024-0513MEDIUMRoyal Elementor Addons and Templates <= 1.3.87 - Cross-Site Request Forgery via remove_from_wishlistEPSS 0.2%CVE-2023-45641MEDIUMWordPress Caret Country Access Limit Plugin <= 1.0.2 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.2%CVE-2023-27448MEDIUMWordPress MakeStories (for Google Web Stories) Plugin <= 2.8.0 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.2%CVE-2023-37996MEDIUMWordPress GTmetrix for WordPress Plugin <= 0.4.7 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.2%CVE-2022-46841MEDIUMWordPress Oxygen Builder Plugin < 4.4 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.2%CVE-2023-32960HIGHWordPress UpdraftPlus Plugin <= 1.23.3 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.2%CVE-2024-31932MEDIUMWordPress Blocksy Companion plugin <= 2.0.28 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2023-27433MEDIUMWordPress Make Paths Relative Plugin <= 1.3.0 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.2%CVE-2023-4729MEDIUMLadiApp: Landing Page, PopupX, Marketing Automation, Affiliate Marketing… <= 4.4 - Cross-Site Request Forgery via publish_lp()EPSS 0.2%CVE-2023-25463MEDIUMWordPress wp tell a friend popup form Plugin <= 7.1 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.2%CVE-2023-40199MEDIUMWordPress WP Like Button Plugin <= 1.7.0 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.2%