Weaknesses of type CWE-352

5,738 results
CVE-2025-58690HIGHWordPress Doliconnect Plugin <= 9.5.7 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2025-58843HIGHWordPress Auto Last Youtube Video Plugin <= 1.0.7 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2025-58687HIGHWordPress Current Age Plugin Plugin <= 1.6 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2025-58806HIGHWordPress WordPress Error Monitoring by Bugsnag Plugin <= 1.6.3 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2025-52765HIGHWordPress NetInsight Analytics Implementation Plugin <= 1.0.3 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2025-58853HIGHWordPress Popping Sidebars and Widgets Light Plugin <= 1.27 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2025-58688HIGHWordPress Casengo Live Chat Support Plugin <= 2.1.4 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2025-58854HIGHWordPress Ultimate AJAX Login Plugin <= 1.2.1 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2025-48351HIGHWordPress Kento Splash Screen plugin <= 1.4 - Cross Site Request Forgery (CSRF) to Stored XSS vulnerabilityEPSS 0.1%CVE-2025-62957HIGHWordPress NikanWP WooCommerce Reporting plugin <= 1.0.0 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-64290MEDIUMWordPress Premmerce Product Search for WooCommerce plugin <= 2.2.4 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-5926MEDIUMLink Shield <= 0.5.4 - Cross-Site Request Forgery to Stored Cross-Site ScriptingEPSS 0.1%CVE-2024-34810MEDIUMWordPress Skyline WP theme <= 1.0.10 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2026-22880MEDIUMMobile SSO authentication flow allows credential theft via malicious serverEPSS 0.1%CVE-2026-31849HIGHMissing CSRF Protection on Administrative Endpoints in Nexxt Nebula 300+EPSS 0.1%CVE-2025-7685MEDIUMLike & Share My Site <= 0.2 - Cross-Site Request Forgery to Stored Cross-Site ScriptingEPSS 0.1%CVE-2025-6063MEDIUMXiSearch bar <= 2.6 - Cross-Site Request Forgery to Stored Cross-Site ScriptingEPSS 0.1%CVE-2025-64201MEDIUMWordPress PowerPress Podcasting plugin <= 11.13.12 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-64288MEDIUMWordPress Premmerce plugin <= 1.3.19 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2026-41663LOWAdmidio: CSRF on Admin Preferences Triggers Unauthorized Backup, .htaccess Write, and Email SendEPSS 0.1%