Weaknesses of type CWE-352

5,738 results
CVE-2025-6063MEDIUMXiSearch bar <= 2.6 - Cross-Site Request Forgery to Stored Cross-Site ScriptingEPSS 0.1%CVE-2025-6064MEDIUMWP URL Shortener <= 1.2 - Cross-Site Request Forgery to Stored Cross-Site ScriptingEPSS 0.1%CVE-2025-7687MEDIUMLatest Post Accordian Slider <= 1.3 - Cross-Site Request Forgery to Stored Cross-Site ScriptingEPSS 0.1%CVE-2025-5926MEDIUMLink Shield <= 0.5.4 - Cross-Site Request Forgery to Stored Cross-Site ScriptingEPSS 0.1%CVE-2026-31849HIGHMissing CSRF Protection on Administrative Endpoints in Nexxt Nebula 300+EPSS 0.1%CVE-2026-41074HIGHRT has broken CSRF protection for authenticated usersEPSS 0.1%CVE-2026-22880MEDIUMMobile SSO authentication flow allows credential theft via malicious serverEPSS 0.1%CVE-2025-6055MEDIUMZen Sticky Social <= 0.3 - Cross-Site Request Forgery to Stored Cross-Site ScriptingEPSS 0.1%CVE-2025-48146HIGHWordPress SEO Flow by LupsOnline plugin <= 2.2.1 - CSRF to Stored XSS vulnerabilityEPSS 0.1%CVE-2025-46512HIGHWordPress Custom Functions Plugin plugin <= 1.1 - CSRF to Stored XSS vulnerabilityEPSS 0.1%CVE-2026-14620MEDIUMwebpack-dev-server vulnerable to cross-site request forgery via internal developer endpointsEPSS 0.1%CVE-2025-49453HIGHWordPress BP Profile as Homepage plugin <= 1.1 - Cross Site Request Forgery (CSRF) to Stored XSS vulnerabilityEPSS 0.1%CVE-2025-43840HIGHWordPress CheckBot plugin <= 1.05 - CSRF to Stored XSS vulnerabilityEPSS 0.1%CVE-2025-48078HIGHWordPress Slick Google Map plugin <= 0.3 - Cross Site Request Forgery (CSRF) to Stored XSS vulnerabilityEPSS 0.1%CVE-2025-48085HIGHWordPress Simple Stripe plugin <= 0.9.17 - Cross Site Request Forgery (CSRF) to Stored XSS vulnerabilityEPSS 0.1%CVE-2025-46514HIGHWordPress Milat jQuery Automatic Popup plugin <= 1.3.1 - CSRF to Stored XSS vulnerabilityEPSS 0.1%CVE-2025-48303MEDIUMWordPress Post Type Converter plugin <= 0.6 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-52790HIGHWordPress WP-DownloadCounter plugin <= 1.01 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2025-46522HIGHWordPress Tabs plugin <= 4.0.3 - Cross Site Request Forgery (CSRF) to Stored XSS vulnerabilityEPSS 0.1%CVE-2025-47655HIGHWordPress theMarketer plugin <= 1.4.7 - CSRF to Stored XSS vulnerabilityEPSS 0.1%