Weaknesses of type CWE-352

5,733 results
CVE-2025-53254MEDIUMWordPress Cyrlitera plugin <= 1.3.0 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-49285MEDIUMWordPress WP Cookie Notice for GDPR, CCPA & ePrivacy Consent plugin <= 3.8.0 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2025-47451MEDIUMWordPress Product Quantity Dropdown For Woocommerce plugin <= 1.2 - Cross Site Request Forgery (CSRF) to Settings Change vulnerabilityEPSS 0.1%CVE-2025-49286MEDIUMWordPress WP Table Builder plugin <= 2.0.6 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2024-23734MEDIUMCross Site Request Forgery vulnerability in in the upload functionality of the User Profile pages in savignano S/Notify before 2.0.1 for BitEPSS 0.1%CVE-2025-47594MEDIUMWordPress Soccer Live Scores <= 1.0.5 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2025-49269MEDIUMWordPress Market Exporter plugin <= 2.0.22 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2025-30948MEDIUMWordPress Layouts for Elementor plugin <= 1.11 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2025-49238MEDIUMWordPress Everest Backup plugin <= 2.3.3 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2025-27340MEDIUMWordPress F12-Profiler Plugin <= 1.3.9 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2026-1392MEDIUMSR WP Minify HTML <= 2.1 - Cross-Site Request Forgery to Settings UpdateEPSS 0.1%CVE-2026-8938MEDIUMauto making JSON-LD <= 4.5.3 - Cross-Site Request Forgery to Plugin Certification Settings via Nonce Validation BypassEPSS 0.1%CVE-2020-37118MEDIUMP5 FNIP-8x16A FNIP-4xSH 1.0.20 - Cross-Site Request Forgery (Add Admin)EPSS 0.1%CVE-2025-13527MEDIUMxShare <= 1.0.1 - Cross-Site Request Forgery to 'rs_plugin_reset' ParameterEPSS 0.1%CVE-2026-3331MEDIUMLobot Slider Administrator <= 0.6.0 - Cross-Site Request Forgery to Settings UpdateEPSS 0.1%CVE-2025-48111MEDIUMWordPress YITH PayPal Express Checkout for WooCommerce plugin <= 1.49.0 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-13520MEDIUMMTCaptcha WordPress Plugin <= 2.7.2 - Cross-Site Request Forgery to Settings UpdateEPSS 0.1%CVE-2025-47470MEDIUMWordPress GPT3 AI Content Writer plugin <= 1.9.14 - Cross Site Request Forgery (CSRF) to Prompt Generation vulnerabilityEPSS 0.1%CVE-2025-47543MEDIUMWordPress TrueBooker plugin <= 1.0.7 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2025-32282MEDIUMWordPress ShareThis Dashboard for Google Analytics plugin <= 3.2.3 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%