Weaknesses of type CWE-352

5,733 results
CVE-2025-9888MEDIUMMaspik <= 2.5.6 - Cross-Site Request ForgeryEPSS 0.2%CVE-2024-12003MEDIUMWP System <= 1.1.1 - Cross-Site Request Forgery to Stored Cross-Site ScriptingEPSS 0.2%CVE-2024-52392MEDIUMWordPress W3SPEEDSTER plugin <= 7.25 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2026-1081MEDIUMSet Bulk Post Categories <= 1.1 - Cross-Site Request Forgery to Bulk Post Category UpdateEPSS 0.2%CVE-2025-10752MEDIUMOAuth Single Sign On – SSO (OAuth Client) <= 6.26.12 - Cross-Site Request ForgeryEPSS 0.2%CVE-2026-7108MEDIUMcode-projects Invoice System in Laravel cross-site request forgeryEPSS 0.2%CVE-2025-4198MEDIUMAlink Tap <= 1.3.1 - Cross-Site Request Forgery to Stored Cross-Site ScriptingEPSS 0.2%CVE-2025-70031HIGHAn issue pertaining to CWE-352: Cross-Site Request Forgery was discovered in Sunbird-Ed SunbirdEd-portal v1.13.4.EPSS 0.2%CVE-2024-35207HIGHA vulnerability has been identified in SINEC Traffic Analyzer (6GK8822-1BG01-0BA0) (All versions < V1.2). The web interface of the affected EPSS 0.2%CVE-2025-1926MEDIUMPage Builder: Pagelayer – Drag and Drop website builder <= 1.9.8 - Cross-Site Request Forgery (CSRF) To Post Contents ModificationEPSS 0.2%CVE-2025-47661MEDIUMWordPress 워드프레스 결제 심플페이 plugin <= 5.2.11 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.2%CVE-2025-14903MEDIUMSimple Crypto Shortcodes <= 1.0.2 - Cross-Site Request Forgery to Plugin Settings UpdateEPSS 0.2%CVE-2025-53249MEDIUMWordPress Build App Online Plugin <= 1.0.23 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.2%CVE-2025-12479CRITICALSystemic Lack of Cross-Site Request Forgery (CSRF) Token ImplementationEPSS 0.2%CVE-2025-4199MEDIUMAbundatrade Plugin <= 1.8.02 - Cross-Site Request Forgery to Stored Cross-Site ScriptingEPSS 0.2%CVE-2025-4188MEDIUMAdvanced Reorder Image Text Slider <= 1.0 - Cross-Site Request Forgery to Stored Cross-Site ScriptingEPSS 0.2%CVE-2018-25200MEDIUMOOP CMS BLOG 1.0 Cross-Site Request Forgery via addUser.phpEPSS 0.2%CVE-2026-4971MEDIUMSourceCodester Note Taking App cross-site request forgeryEPSS 0.2%CVE-2021-47800MEDIUMb2evolution 7.2.2 - 'edit account details' Cross-Site Request Forgery (CSRF)EPSS 0.2%CVE-2025-12061HIGHTax Service Electronic HDM < 1.2.1 - Unauthenticated Arbitrary SQL ExecutionEPSS 0.2%