Weaknesses of type CWE-352
5,688 resultsCVE-2024-56924HIGHA Cross Site Request Forgery (CSRF) vulnerability in Code Astro Internet banking system 2.0.0 allows remote attackers to execute arbitrary JEPSS 0.4%CVE-2020-19803HIGHCross Site Request Forgery vulnerability found in Milken DoyoCMS v.2.3 allows a remote attacker to execute arbitrary code via the backgroundEPSS 0.4%CVE-2023-3029MEDIUMGuangdong Pythagorean OA Office System delete cross-site request forgeryEPSS 0.4%CVE-2024-6320HIGHScrollTo Top <= 1.2.2 - Cross-Site Request Forgery to Arbitrary File UploadEPSS 0.4%CVE-2024-6321HIGHScrollTo Bottom <= 1.1.1 - Cross-Site Request Forgery to Arbitrary File UploadEPSS 0.4%CVE-2021-34360MEDIUMCSRF Bypass in Proxy ServerEPSS 0.4%CVE-2022-40192HIGHWordPress wpForo Forum plugin <= 2.0.9 - Cross-Site Request Forgery (CSRF) vulnerabilityEPSS 0.4%CVE-2021-24668—MAZ Loader < 1.4.1 - Arbitrary Loader Deletion via CSRFEPSS 0.4%CVE-2021-24780—Single Post Exporter <= 1.1.1 - Plugin's Settings Update via CSRFEPSS 0.4%CVE-2020-23593MEDIUMA vulnerability in OPTILINK OP-XT71000N Hardware Version: V2.2, Firmware Version: OP_V3.3.1-191028 allows an unauthenticated, remote attackeEPSS 0.4%CVE-2021-4401HIGHStyle Kits <= 1.8.0 - Cross-Site Request Forgery BypassEPSS 0.4%CVE-2021-24832—WP SEO Redirect 301 < 2.3.2 - Redirect Deletion via CSRFEPSS 0.4%CVE-2021-24776—WP Performance Score Booster < 2.1 - Settings Change via CSRFEPSS 0.4%CVE-2021-24749—URL Shortify < 1.5.1 - Arbitrary Link/Group Deletion via CSRFEPSS 0.4%CVE-2021-24818—WP Limits <= 1.0 - Plugin's Settings Update via CSRFEPSS 0.4%CVE-2023-4868MEDIUMSourceCodester Contact Manager App add.php cross-site request forgeryEPSS 0.4%CVE-2021-41260HIGHMissing CSRF checks in GaletteEPSS 0.4%CVE-2024-4172MEDIUMidcCMS cross-site request forgeryEPSS 0.4%CVE-2020-7029MEDIUMAvaya Product System Management Interface Cross-Site Request Forgery VulnerabilityEPSS 0.4%CVE-2023-4865MEDIUMSourceCodester Take-Note App cross-site request forgeryEPSS 0.4%