Weaknesses of type CWE-352

5,733 results
CVE-2025-39438MEDIUMWordPress Theme Changer plugin <= 1.4 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2024-53770HIGHWordPress RingCentral Communications plugin <= 1.7.0 - CSRF to Stored XSS vulnerabilityEPSS 0.2%CVE-2024-51687HIGHWordPress Platform.ly Official plugin <= 1.1.3 - CSRF to Stored XSS vulnerabilityEPSS 0.2%CVE-2025-10300MEDIUMTopBar <= 1.0.0 - Cross-Site Request Forgery to Settings UpdateEPSS 0.2%CVE-2024-53769HIGHWordPress Custom Post Type to Map Store plugin <= 1.1.0 - CSRF to Stored XSS vulnerabilityEPSS 0.2%CVE-2024-53779HIGHWordPress Yahoo! WebPlayer plugin <= 2.0.6 - CSRF to Stored XSS vulnerabilityEPSS 0.2%CVE-2024-53762HIGHWordPress FastBook plugin <= 1.1 - CSRF to Stored Cross Site Scripting (XSS) vulnerabilityEPSS 0.2%CVE-2024-51688HIGHWordPress FraudLabs Pro SMS Verification plugin <= 1.10.1 - CSRF to Stored XSS vulnerabilityEPSS 0.2%CVE-2024-53789HIGHWordPress Advanced What should we write next about plugin <=1.0.3 - CSRF to Stored Cross Site Scripting (XSS) vulnerabilityEPSS 0.2%CVE-2024-53776HIGHWordPress Donate Me plugin <= 1.2.5 - CSRF to Stored XSS vulnerabilityEPSS 0.2%CVE-2024-43301HIGHWordPress Fonts plugin <= 3.7.7 - Cross Site Request Forgery (CSRF) to Stored XSSvulnerabilityEPSS 0.2%CVE-2025-12901MEDIUMAsgaros Forum <= 3.2.1 - Cross-Site Request Forgery to Subscription Settings UpdateEPSS 0.2%CVE-2024-53781HIGHWordPress SpatialMatch IDX plugin <= 3.0.9 - CSRF to Stored XSS vulnerabilityEPSS 0.2%CVE-2024-53730HIGHWordPress April's Call Posts plugin <= 2.1.1 - CSRF to Stored XSS vulnerabilityEPSS 0.2%CVE-2025-5937MEDIUMMicroPayments – Fans Paysite: Paid Creator Subscriptions, Digital Assets, Wallet <= 3.2.0 - Cross-Site Request Forgery to Settings ResetEPSS 0.2%CVE-2024-53765HIGHWordPress Mins To Read plugin <= 1.2.2 - CSRF to Stored XSS vulnerabilityEPSS 0.2%CVE-2024-48048HIGHWordPress Wsify Widget plugin <= 1.0 - CSRF to Stored XSS vulnerabilityEPSS 0.2%CVE-2024-53777HIGHWordPress Simple Header and Footer plugin <= 1.0.0 - CSRF to Stored Cross Site Scripting (XSS) vulnerabilityEPSS 0.2%CVE-2024-4600HIGHCross-Site Request Forgery vulnerability in Socomec Net VisionEPSS 0.2%CVE-2026-9674MEDIUMA cross-site request forgery (CSRF) vulnerability in Jenkins Multijob Plugin 662.vd2e0001f6b_b_d and earlier allows attackers to resume failEPSS 0.2%