Weaknesses of type CWE-352
5,740 resultsCVE-2025-48104HIGHWordPress Floating Window Music Player plugin <= 3.4.2 - Cross Site Request Forgery (CSRF) to Stored XSS vulnerabilityEPSS 0.1%CVE-2025-58859HIGHWordPress Add to Feedly Plugin <= 1.2.11 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2025-13142MEDIUMCustom Post Type <= 1.0 - Cross-Site Request Forgery to Custom Post Type DeletionEPSS 0.1%CVE-2025-58860HIGHWordPress Enable Latex Plugin <= 1.2.16 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2025-67471MEDIUMWordPress Quick Contact Form plugin <= 8.2.5 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-64240MEDIUMWordPress Freshchat plugin <= 2.3.4 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2026-24966MEDIUMWordPress Copyscape Premium plugin <= 1.4.1 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2026-24942MEDIUMWordPress WpEvently plugin <= 5.1.1 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-64239MEDIUMWordPress RTL Tester plugin <= 1.2 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2026-32344MEDIUMWordPress Corpiva theme <= 1.0.96 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2026-22462MEDIUMWordPress Add Polylang support for Customizer plugin <= 1.4.5 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-58999MEDIUMWordPress WP Attractive Donations System - Easy Stripe & Paypal donations plugin <= 1.25 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2026-57637MEDIUMWordPress Abandoned Cart Lite for WooCommerce plugin <= 6.8.0 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-59009MEDIUMWordPress Listify theme <= 3.2.5 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-14907MEDIUMModerate Selected Posts <= 1.4 - Cross-Site Request Forgery to Plugin Settings UpdateEPSS 0.1%CVE-2026-22360MEDIUMWordPress SearchAzon plugin <= 1.4 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2026-32342MEDIUMWordPress Quiz Maker plugin <= 6.7.1.2 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2026-49433LOWDeepAI api.deepai.org/change_user_email CSRFEPSS 0.1%CVE-2026-25411MEDIUMWordPress Revision Manager TMC plugin <= 2.8.22 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-15635MEDIUMWordPress Smart Online Order for Clover plugin <= 1.6.0 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%