Weaknesses of type CWE-352
5,737 resultsCVE-2025-49391MEDIUMWordPress Sign-up Sheets Plugin <= 2.3.3 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2025-5936MEDIUMVR Calendar <= 2.4.7 - Cross-Site Request Forgery to Calendar SyncEPSS 0.1%CVE-2026-1073MEDIUMPurchase Button For Affiliate Link <= 1.0.2 - Cross-Site Request Forgery to Settings UpdateEPSS 0.1%CVE-2025-49351HIGHWordPress Create Posts & Terms plugin <= 1.3.1 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2026-1852MEDIUMProduct Pricing Table by WooBeWoo <= 1.1.0 - Cross-Site Request Forgery to Stored XSS and Pricing Table DeletionEPSS 0.1%CVE-2025-49347HIGHWordPress WP sIFR plugin <= 0.6.8.1 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-5938MEDIUMDigital Marketing and Agency Templates Addons for Elementor <= 1.1.1 - Cross-Site Request Forgery to ImportEPSS 0.1%CVE-2026-3589HIGHWooCommerce < 10.5.3 - Arbitrary Admin User Creation via CSRFEPSS 0.1%CVE-2025-30756MEDIUMVulnerability in Oracle REST Data Services (component: General). The supported version that is affected is 24.2.0. Easily exploitable vulnEPSS 0.1%CVE-2025-5928MEDIUMWP Sliding Login/Dashboard Panel <= 2.1.1 - Cross-Site Request Forgery to Settings UpdateEPSS 0.1%CVE-2025-36513MEDIUMCross-site request forgery vulnerability exists in surveillance cameras provided by i-PRO Co., Ltd.. If a user views a crafted page while loEPSS 0.1%CVE-2021-47953MEDIUMOpenCart 3.0.3.7 Cross-Site Request Forgery via account/passwordEPSS 0.1%CVE-2025-13139MEDIUMSurveyJS: Drag & Drop WordPress Form Builder <= 2.5.2 - Cross-Site Request Forgery to Survey CreationEPSS 0.1%CVE-2025-6781MEDIUMCopymatic – AI Content Writer & Generator <= 2.1 - Cross-Site Request Forgery to Settings UpdateEPSS 0.1%CVE-2025-14164MEDIUMQuran Gateway <= 1.5 - Cross-Site Request Forgery to Settings UpdateEPSS 0.1%CVE-2025-14168MEDIUMWP DB Booster <= 1.0.1 - Cross-Site Request Forgery to Database CleanupEPSS 0.1%CVE-2026-1086MEDIUMFont Pairing Preview For Landing Pages <= 1.3 - Cross-Site Request Forgery to Settings UpdateEPSS 0.1%CVE-2025-62687MEDIUMCross-site request forgery vulnerability exists in LogStare Collector. If a user views a crafted page while logged, unintended operations maEPSS 0.1%CVE-2018-25177MEDIUMData Center Audit 2.6.2 Cross-Site Request Forgery via dca_resetpw.phpEPSS 0.1%CVE-2025-25147HIGHWordPress Auto SEO plugin <= 2.5.6 - CSRF to Stored XSS vulnerabilityEPSS 0.1%