Weaknesses of type CWE-352

5,721 results
CVE-2026-6075HIGHMedia Library Assistant <= 3.35 - Cross-Site Request Forgery via Bulk Action FormEPSS 0.2%CVE-2025-24715MEDIUMWordPress Counter Box Plugin <= 2.0.5 - Cross Site Request Forgery (CSRF) to Settings Change vulnerabilityEPSS 0.2%CVE-2024-35689MEDIUMWordPress Analytify plugin <= 5.2.3 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2024-54411HIGHWordPress WP Controller plugin <= 3.2.0 - CSRF to Stored Cross-Site Scripting vulnerabilityEPSS 0.2%CVE-2024-54428HIGHWordPress Add image to Post plugin <= 0.6 - CSRF to Stored XSS vulnerabilityEPSS 0.2%CVE-2024-29093MEDIUMWordPress Builder for WooCommerce reviews shortcodes – ReviewShort plugin <= 1.01.3 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2024-1910MEDIUMCategorify <= 1.0.7.4 - Cross-Site Request Forgery via categorifyAjaxClearCategoryEPSS 0.2%CVE-2024-1976MEDIUMMarketing Optimizer <= 20200925 - Cross-Site Request Forgery to Stored Cross-Site ScriptingEPSS 0.2%CVE-2024-54386HIGHWordPress Push Monkey Pro plugin <= 3.9 - CSRF to Stored XSS vulnerabilityEPSS 0.2%CVE-2024-54414HIGHWordPress Geoportail Shortcode plugin <= 2.4.4 - CSRF to Stored Cross-Site Scripting vulnerabilityEPSS 0.2%CVE-2024-1907MEDIUMCategorify <= 1.0.7.4 - Cross-Site Request Forgery via categorifyAjaxDeleteCategoryEPSS 0.2%CVE-2024-54425HIGHWordPress LionScripts: Site Maintenance plugin <= 2.1 - CSRF to Stored Cross-Site Scripting vulnerabilityEPSS 0.2%CVE-2024-6959HIGHDenial of Service (DOS) in multipart boundary while uploading file in parisneo/lollms-webuiEPSS 0.2%CVE-2024-54420HIGHWordPress Metrika plugin <= 1.2 - CSRF to Stored XSS vulnerabilityEPSS 0.2%CVE-2024-12545MEDIUMScratch & Win – Giveaways and Contests <= 2.7.1 - Cross-Site Request Forgery via reset_installation FunctionEPSS 0.2%CVE-2024-54405HIGHWordPress ECT Social Share plugin <= 1.3 - CSRF to Stored XSS vulnerabilityEPSS 0.2%CVE-2023-40009MEDIUMWordPress WP Pipes Plugin <= 1.4.0 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.2%CVE-2024-54436HIGHWordPress Jet Footer Code plugin <= 1.4 - CSRF to Stored XSS vulnerabilityEPSS 0.2%CVE-2024-54440HIGHWordPress WP-Ban-User plugin <= 1.0 - CSRF to Stored XSS vulnerabilityEPSS 0.2%CVE-2023-7273MEDIUMCross Site Request Forgery in Kiteworks OwnCloudEPSS 0.2%