Weaknesses of type CWE-352
5,733 resultsCVE-2025-14906MEDIUMWP Youtube Video Gallery <= 1.0 - Cross-Site Request Forgery to Plugin Settings UpdateEPSS 0.1%CVE-2025-53268MEDIUMWordPress Import external attachments plugin <= 1.5.12 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2025-49968MEDIUMWordPress XML Travel Portal Widget plugin <= 2.0 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2025-14468MEDIUMAMP for WP – Accelerated Mobile Pages <= 1.1.9 - Cross-Site Request Forgery to Comment SubmissionEPSS 0.1%CVE-2025-23972MEDIUMWordPress Contact Form 7 reCAPTCHA plugin <= 1.2.0 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2026-7047MEDIUMFrontend User Notes <= 2.1.1 - Cross-Site Request Forgery to Note Content Modification via 'confirmEdit' ActionEPSS 0.1%CVE-2025-49972MEDIUMWordPress TM Replace Howdy plugin <= 1.4.2 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2018-25354MEDIUMJoomla Component jomres 9.11.2 Cross-Site Request ForgeryEPSS 0.1%CVE-2025-31908HIGHWordPress JSON Structuring Markup plugin <= 0.1 - CSRF to Stored XSS vulnerabilityEPSS 0.1%CVE-2025-57893MEDIUMWordPress WP Fast Total Search Plugin <= 1.79.270 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2025-58794MEDIUMWordPress Notification for Telegram plugin <= 3.5 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2026-9722MEDIUMLaiser Tag <= 1.2.5 - Cross-Site Request Forgery to Plugin Settings Update via Settings FormEPSS 0.1%CVE-2025-60137MEDIUMWordPress Post Featured Video Plugin <= 1.7 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2026-39436HIGHWordPress CformsII plugin <= 15.1.3 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2026-28761HIGHCross-site request forgery vulnerability exists in Musetheque V4 Information Disclosure for IPKNOWLEDGE V4L1 rev2203.0 and earlier. If a useEPSS 0.1%CVE-2025-58800MEDIUMWordPress WP Email Template plugin <= 2.8.5 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-58675MEDIUMWordPress Interact: Embed A Quiz On Your Site Plugin <= 3.1 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2026-2494MEDIUMProfileGrid <= 5.9.8.2 - Cross-Site Request Forgery to Group Membership Request Approval/DenialEPSS 0.1%CVE-2025-48363MEDIUMWordPress Popup for CF7 with Sweet Alert plugin <= 1.6.5 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-25100HIGHWordPress Cazamba plugin <= 1.2 - CSRF to Reflected Cross Site Scripting (XSS) vulnerabilityEPSS 0.1%