Weaknesses of type CWE-352
5,740 resultsCVE-2025-62190MEDIUMCSRF Allows Call Initiation and Message DeliveryEPSS 0.1%CVE-2025-58922MEDIUMWordPress Avada theme < 7.13.2 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-58869MEDIUMWordPress SimaCookie Plugin <= 1.3.2 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2025-62089MEDIUMWordPress Mergado Pack plugin <= 4.2.1 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-50255HIGHCross Site Request Forgery (CSRF) vulnerability in Smartvista BackOffice SmartVista Suite 2.2.22 via crafted GET request.EPSS 0.1%CVE-2026-59520MEDIUMWordPress CrawlWP SEO plugin <= 3.0.16 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-63040MEDIUMWordPress Post Snippets plugin <= 4.0.11 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-62148MEDIUMWordPress Robots.txt rewrite plugin <= 1.6.1 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-62084MEDIUMWordPress iNext Woo Pincode Checker plugin <= 2.3.1 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2026-42645MEDIUMWordPress Barcode Scanner with Inventory & Order Manager plugin <= 1.11.0 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-63014MEDIUMWordPress Gmedia Photo Gallery plugin <= 1.25.0 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-62880MEDIUMWordPress Custom 404 Pro plugin <= 3.12.0 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-62080MEDIUMWordPress Live Shopping & Shoppable Videos For WooCommerce plugin <= 2.2.0 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2024-32110MEDIUMWordPress Event Manager and Tickets Selling Plugin for WooCommerce plugin <= 4.1.2 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2026-31014MEDIUMDovestones Softwares AD Self Update <4.0.0.5 is vulnerable to Cross Site Request Forgery (CSRF). The affected endpoint processes state-changEPSS 0.1%CVE-2025-62107MEDIUMWordPress Feather Login Page plugin <= 1.1.7 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-13296MEDIUMCSRF in Tekrom Technology's T-Soft E-CommerceEPSS 0.1%CVE-2025-59130MEDIUMWordPress Appointify plugin <= 1.0.8 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2026-57657MEDIUMWordPress Gmail SMTP plugin <= 1.2.3.19 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-62133MEDIUMWordPress FormFacade plugin <= 1.4.1 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%