Weaknesses of type CWE-352
5,723 resultsCVE-2025-24712MEDIUMWordPress Radius Blocks – WordPress Gutenberg Blocks Plugin <= 2.1.2 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2026-2317MEDIUMInappropriate implementation in Animation in Google Chrome prior to 145.0.7632.45 allowed a remote attacker to leak cross-origin data via a EPSS 0.2%CVE-2018-25363MEDIUMTwitter-Clone 1 Cross-Site Request Forgery via tweetdel.phpEPSS 0.2%CVE-2025-24716MEDIUMWordPress Herd Effects Plugin <= 6.2.1 - Cross Site Request Forgery (CSRF) to Settings Change vulnerabilityEPSS 0.2%CVE-2024-9311MEDIUMCross-Site Request Forgery to XSS in haotian-liu/llavaEPSS 0.2%CVE-2025-6001HIGHVirtueMart - Cross Site Request Forgery (CSRF)EPSS 0.2%CVE-2026-40581HIGHChurchCRM: Cross-Site Request Forgery (CSRF) in SelectDelete.php Leading to Permanent Data DeletionEPSS 0.2%CVE-2024-33688MEDIUMWordPress Teluro theme <= 1.0.31 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2024-39119MEDIUMidccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) via admin/info_deal.php?mudi=rev&nohrefStr=close.EPSS 0.2%CVE-2025-8592HIGHInspiro <= 2.1.2 - Cross-Site Request Forgery to Arbitrary Plugin InstallationEPSS 0.2%CVE-2024-37241MEDIUMWordPress WP Job Manager Resume Manager plugin <= 2.1.0 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2025-24711MEDIUMWordPress Popup Box Plugin <= 3.2.4 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2024-40883MEDIUMCross-site request forgery vulnerability exists in ELECOM wireless LAN routers. Viewing a malicious page while logging in to the affected prEPSS 0.2%CVE-2025-24713MEDIUMWordPress Button Generator – easily Button Builder Plugin <= 3.1.1 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2024-1777MEDIUMAdmin side data storage for Contact Form 7 <= 1.1.1 - Cross-Site Request ForgeryEPSS 0.2%CVE-2024-33680MEDIUMWordPress MainWP Child Reports plugin <= 2.1.1 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2023-39166HIGHWordPress tagDiv Composer Plugin < 4.4 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.2%CVE-2023-37995MEDIUMWordPress WP-CopyProtect [Protect your blog posts] Plugin <= 3.1.0 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.2%CVE-2026-44925HIGHCross-Site Request Forgery (CSRF) vulnerability in InfoScale v.9.1.3 Operations Manager (VIOM) allows an attacker to force the user with an EPSS 0.2%CVE-2024-2904MEDIUMWordPress Calliope theme <= 1.0.33 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%