Weaknesses of type CWE-352
5,723 resultsCVE-2025-30549MEDIUMWordPress Yummly Rich Recipes plugin <= 4.2 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2025-23471HIGHWordPress ECT Add to Cart Button plugin <= 1.4 - CSRF to Stored XSS vulnerabilityEPSS 0.2%CVE-2025-30862MEDIUMWordPress reCAPTCHA for all plugin <= 2.22 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2025-30529MEDIUMWordPress Auto Load Next Post plugin <= 1.5.14 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2025-23844HIGHWordPress Custom Widget Classes plugin <= 1.1 - CSRF to Stored XSS vulnerabilityEPSS 0.2%CVE-2024-31933MEDIUMWordPress Page Builder: Live Composer plugin <= 1.5.35 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2025-30534MEDIUMWordPress Image Captcha plugin <= 1.2 - Cross Site Request Forgery (CSRF) to Settings Change vulnerabilityEPSS 0.2%CVE-2025-31763MEDIUMWordPress Cache control by Cacholong Plugin <= 5.4.1 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2025-23463HIGHWordPress MD Custom content after or before of post plugin <= 1.0 - CSRF to Stored XSS vulnerabilityEPSS 0.2%CVE-2025-23818HIGHWordPress More Link Modifier plugin <= 1.0.3 - CSRF to Cross-Site Scripting vulnerabilityEPSS 0.2%CVE-2025-31769MEDIUMWordPress CLP – Custom Login Page by NiteoThemes plugin <= 1.5.5 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2024-33681HIGHWordPress Regenerate post permalink plugin <= 1.0.3 - Cross Site Request Forgery (CSRF) leading to XSS vulnerabilityEPSS 0.2%CVE-2025-31808MEDIUMWordPress SCSS WP Editor plugin <= 1.2.1 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2025-23832HIGHWordPress Admin Cleanup plugin <= 1.0.2 - CSRF to Stored XSS vulnerabilityEPSS 0.2%CVE-2025-23880HIGHWordPress amr personalise plugin <= 2.10 - CSRF to Stored XSS vulnerabilityEPSS 0.2%CVE-2025-30535MEDIUMWordPress External image replace plugin <= 1.0.8 - Cross Site Request Forgery (CSRF) to Settings Change vulnerabilityEPSS 0.2%CVE-2025-23821HIGHWordPress WP Cookies Alert plugin <= 1.1.1 - CSRF to Stored XSS vulnerabilityEPSS 0.2%CVE-2025-30538MEDIUMWordPress Simple Optimizer plugin <= 1.2.7 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2025-23822HIGHWordPress Category Custom Fields plugin <= 1.0 - CSRF to Stored XSS vulnerabilityEPSS 0.2%CVE-2024-12280MEDIUMWP Customer Area <= 8.2.4 - Event Log Deletion via CSRFEPSS 0.2%