Weaknesses of type CWE-352

5,739 results
CVE-2026-35180MEDIUMWWBN AVideo affected by CSRF on Site Customization Endpoint Enables Logo Overwrite via Base64 File WriteEPSS 0.1%CVE-2025-64700MEDIUMCross-site request forgery vulnerability exists in GROWI v7.3.3 and earlier. If a user views a malicious page while logged in, the user may EPSS 0.1%CVE-2025-27904MEDIUMMultiple vulnerabilities in IBM Java SDK affecting Db2 Recovery Expert for Linux, Unix and WindowsEPSS 0.1%CVE-2026-57655HIGHWordPress Child theme Wizard plugin <= 1.4 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-62934HIGHWordPress WP Business Hours plugin <= 1.4 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-36018MEDIUMMultiple Vulnerabilities in IBM Concert Software.EPSS 0.1%CVE-2025-62866MEDIUMWordPress Auto Alt Text plugin <= 2.5.2 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-62873MEDIUMWordPress WP Flashy Marketing Automation plugin <= 2.0.8 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-62733MEDIUMWordPress Custom Sidebars by ProteusThemes plugin <= 1.0.3 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-64256MEDIUMWordPress Simple Folio plugin <= 1.1.0 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-62102MEDIUMWordPress DoFollow Case by Case plugin <= 3.5.1 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2026-42190MEDIUMRedwoodSDK: Same-site CSRF in in server actionsEPSS 0.1%CVE-2025-62872MEDIUMWordPress Social Photo Fetcher plugin <= 3.0.4 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-62103MEDIUMWordPress Media Library File Download plugin <= 1.4 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-62871MEDIUMWordPress Just TinyMCE Custom Styles plugin <= 1.2.1 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-67469MEDIUMWordPress PDF Thumbnail Generator plugin <= 1.4 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-62762MEDIUMWordPress SMTP Mail plugin <= 1.3.51 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-62734MEDIUMWordPress Media Library Downloader plugin <= 1.4.0 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-63012MEDIUMWordPress WP Hotel Booking plugin <= 2.2.8 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2023-22675MEDIUMWordPress WP Fast Cache plugin <= 1.5 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%