Weaknesses of type CWE-352
5,733 resultsCVE-2025-48310MEDIUMWordPress Table Editor plugin <= 1.6.4 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-58799MEDIUMWordPress Custom WooCommerce Checkout Fields Editor Plugin <= 1.3.4 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2025-58804MEDIUMWordPress WooCommerce Single Page Checkout Plugin <= 1.2.7 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2025-57893MEDIUMWordPress WP Fast Total Search Plugin <= 1.79.270 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2025-58032MEDIUMWordPress WP Compiler Plugin <= 1.0.0 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2025-48497MEDIUMCross-site request forgery vulnerability exists in iroha Board versions v0.10.12 and earlier. If a user accesses a specially crafted URL whiEPSS 0.1%CVE-2025-58792MEDIUMWordPress Authors List plugin <= 2.0.6.2 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-58802MEDIUMWordPress TrustMate.io – WooCommerce integration plugin <= 1.16.0 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-25086HIGHWordPress Secret Meta plugin <= 1.2.1 - CSRF to Reflected Cross Site Scripting (XSS) vulnerabilityEPSS 0.1%CVE-2026-28761HIGHCross-site request forgery vulnerability exists in Musetheque V4 Information Disclosure for IPKNOWLEDGE V4L1 rev2203.0 and earlier. If a useEPSS 0.1%CVE-2025-55057MEDIUMMultiple CWE-352 Cross-Site Request Forgery (CSRF)EPSS 0.1%CVE-2025-48363MEDIUMWordPress Popup for CF7 with Sweet Alert plugin <= 1.6.5 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-22658HIGHWordPress Listings for Appfolio plugin <= 1.2.0 - CSRF to Stored XSS vulnerabilityEPSS 0.1%CVE-2025-58010MEDIUMWordPress SV Proven Expert Plugin <= 2.0.06 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2025-58014MEDIUMWordPress Quiz Maker Plugin <= 6.7.0.64 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2025-60137MEDIUMWordPress Post Featured Video Plugin <= 1.7 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2026-9722MEDIUMLaiser Tag <= 1.2.5 - Cross-Site Request Forgery to Plugin Settings Update via Settings FormEPSS 0.1%CVE-2025-57970MEDIUMWordPress SALESmanago Plugin <= 3.8.1 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2025-57895MEDIUMWordPress JobWP Plugin <= 2.4.3 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2025-31623HIGHWordPress Rich Text Editor plugin <= 1.0.1 - CSRF to Stored XSS vulnerabilityEPSS 0.1%