Weaknesses of type CWE-352
5,723 resultsCVE-2023-37995MEDIUMWordPress WP-CopyProtect [Protect your blog posts] Plugin <= 3.1.0 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.2%CVE-2026-44925HIGHCross-Site Request Forgery (CSRF) vulnerability in InfoScale v.9.1.3 Operations Manager (VIOM) allows an attacker to force the user with an EPSS 0.2%CVE-2024-2904MEDIUMWordPress Calliope theme <= 1.0.33 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2023-6493MEDIUMDepicter Slider – Responsive Image Slider, Video Slider & Post Slider <= 2.0.6 - Cross-Site Request Forgery via saveEPSS 0.2%CVE-2023-40008MEDIUMWordPress Simple Org Chart Plugin <= 2.3.4 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.2%CVE-2024-43117MEDIUMWordPress Hummingbird plugin <= 3.9.1 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2024-1777MEDIUMAdmin side data storage for Contact Form 7 <= 1.1.1 - Cross-Site Request ForgeryEPSS 0.2%CVE-2023-3254MEDIUMWidgets for Google Reviews <= 10.9 - Cross-Site Request Forgery to Plugin Settings ResetEPSS 0.2%CVE-2026-23694MEDIUMAruba HiSpeed Cache < 3.0.5 CSRF in Multiple Administrative AJAX ActionsEPSS 0.2%CVE-2025-23810HIGHWordPress Len Slider Plugin <= 2.0.11 - CSRF to Reflected Cross Site Scripting (XSS) vulnerabilityEPSS 0.2%CVE-2025-30823MEDIUMWordPress Anthologize Plugin <= 0.8.2 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2023-51521MEDIUMWordPress Quiz And Survey Master plugin <= 8.1.18 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2025-23871HIGHWordPress LSD Google Maps Embedder plugin <= 1.1 - CSRF to Stored XSS vulnerabilityEPSS 0.2%CVE-2025-23815HIGHWordPress root Cookie plugin <= 1.6 - CSRF to Stored XSS vulnerabilityEPSS 0.2%CVE-2025-23821HIGHWordPress WP Cookies Alert plugin <= 1.1.1 - CSRF to Stored XSS vulnerabilityEPSS 0.2%CVE-2026-1169MEDIUMbirkir prime cross-site request forgeryEPSS 0.2%CVE-2025-23898HIGHWordPress Apply with LinkedIn buttons plugin <= 2.3 - CSRF to Stored XSS vulnerabilityEPSS 0.2%CVE-2025-23869HIGHWordPress CJ Custom Content plugin <= 2.0 - CSRF to Cross-Site Scripting vulnerabilityEPSS 0.2%CVE-2025-30865MEDIUMWordPress 3DPrint Lite plugin <= 2.1.3.5 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2025-30811MEDIUMWordPress ValidateCertify plugin <= 1.6.1 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%