Weaknesses of type CWE-352
5,733 resultsCVE-2025-5932MEDIUMHomerunner <= 1.0.30 - Cross-Site Request Forgery to Settings UpdateEPSS 0.2%CVE-2024-53780HIGHWordPress Load More Posts plugin <= 1.5.0 - CSRF to Stored XSS vulnerabilityEPSS 0.2%CVE-2024-51684HIGHWordPress W3P SEO plugin < 1.8.6 - CSRF to Stored XSS vulnerabilityEPSS 0.2%CVE-2024-53770HIGHWordPress RingCentral Communications plugin <= 1.7.0 - CSRF to Stored XSS vulnerabilityEPSS 0.2%CVE-2024-42504MEDIUMHPE IceWall Agent products, Cross-Site Request Forgery (CSRF)EPSS 0.2%CVE-2025-54022MEDIUMWordPress Coupon Affiliates plugin <= 6.4.0 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.2%CVE-2024-53729HIGHWordPress Blizzard Quotes plugin <= 1.3 - CSRF to Stored Cross Site Scripting (XSS) vulnerabilityEPSS 0.2%CVE-2026-57290MEDIUMA cross-site request forgery (CSRF) vulnerability in Jenkins Priority Sorter Plugin 936.v2c01c6b_84449 and earlier allows attackers to overwEPSS 0.2%CVE-2024-53782HIGHWordPress Photo Video Store plugin <= 21.07 - CSRF to Cross Site Scripting (XSS) vulnerabilityEPSS 0.2%CVE-2026-11155MEDIUMInappropriate implementation in CSS in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafteEPSS 0.2%CVE-2025-10499MEDIUMNinja Forms – The Contact Form Builder That Grows With You <= 3.12.0 - Cross-Site Request Forgery to Plugin Settings UpdateEPSS 0.2%CVE-2025-9949MEDIUMInternal Links Manager <= 3.0.1 - Cross-Site Request ForgeryEPSS 0.2%CVE-2026-3140MEDIUMUltimate Dashboard <= 3.8.14 - Cross-Site Request Forgery to Module Activation/DeactivationEPSS 0.2%CVE-2025-10375MEDIUMWeb Accessibility By accessiBe <= 2.10 - Cross-Site Request ForgeryEPSS 0.2%CVE-2025-9627MEDIUMRun Log <= 1.7.10 - Cross-Site Request Forgery to Settings UpdateEPSS 0.2%CVE-2025-59541HIGHChamilo: CSRF Vulnerability in Project DeletionEPSS 0.2%CVE-2025-25146MEDIUMWordPress Songkick Concerts and Festivals plugin <= 0.9.7 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2025-0808MEDIUMHouzez Property Feed <= 2.4.21 - Cross-Site Request Forgery to Property Feed Export DeletionEPSS 0.2%CVE-2025-10498MEDIUMNinja Forms – The Contact Form Builder That Grows With You <= 3.12.0 - Cross-Site Request Forgery to Limited File DeletionEPSS 0.2%CVE-2025-14167MEDIUMRemove Post Type Slug <= 1.0.2 - Cross-Site Request Forgery to Settings UpdateEPSS 0.2%