Weaknesses of type CWE-352
5,692 resultsCVE-2023-51813MEDIUMCross Site Request Forgery (CSRF) vulnerability in Free Open-Source Inventory Management System v.1.0 allows a remote attacker to execute arEPSS 0.4%CVE-2023-5444HIGHCSRF in ePO leading to privilege escalationEPSS 0.4%CVE-2020-23586MEDIUMA vulnerability found in OPTILINK OP-XT71000N Hardware Version: V2.2 , Firmware Version: OP_V3.3.1-191028 allows an unauthenticated, remote EPSS 0.4%CVE-2023-40048MEDIUMWS_FTP Server Cross-Site Request Forgery (CSRF) VulnerabilityEPSS 0.4%CVE-2023-25569MEDIUMapollo-portal has potential CSRF issueEPSS 0.4%CVE-2024-7460MEDIUMOSWAPP Warehouse Inventory System change_password.php cross-site request forgeryEPSS 0.4%CVE-2021-4420MEDIUMSell Media <= 2.5.5 - Cross-Site Request Forgery BypassEPSS 0.4%CVE-2021-4424MEDIUMSlider Hero <= 8.2.0 - Cross-Site Request Forgery BypassEPSS 0.4%CVE-2021-4419MEDIUMWP-Backgrounds Lite <= 2.3 - Cross-Site Request Forgery BypassEPSS 0.4%CVE-2022-42447CRITICALCross-origin resource sharing vulnerability affects HCL CompassEPSS 0.4%CVE-2024-3643HIGHNewsletter Popup <= 1.2 - List Deletion via CSRFEPSS 0.4%CVE-2021-4421MEDIUMAdvanced Popups <= 1.1.1 - Cross-Site Request Forgery BypassEPSS 0.4%CVE-2020-36757MEDIUMWP Hotel Booking <= 1.10.1 - Cross-Site Request Forgery BypassEPSS 0.4%CVE-2022-3372HIGHCross-Site Request Forgery (CSRF) in Riello UPS Netman-204EPSS 0.4%CVE-2023-27295MEDIUMCross-site request forgery is facilitated by OpenCATS failure to require CSRF tokens in POST requests. An attacker can exploit this issue byEPSS 0.4%CVE-2024-3406HIGHWP Prayer <= 2.0.9 - Email Settings Update via CSRFEPSS 0.4%CVE-2020-36756MEDIUM10WebAnalytics <= 1.2.8 - Cross-Site Request Forgery BypassEPSS 0.4%CVE-2023-30529MEDIUMJenkins Lucene-Search Plugin 387.v938a_ecb_f7fe9 and earlier does not require POST requests for an HTTP endpoint, allowing attackers to reinEPSS 0.3%CVE-2022-3538MEDIUMWebmaster Tools Verification <= 1.2 - Unauthenticated Arbitrary Plugin DeactivationEPSS 0.3%CVE-2021-47830MEDIUMGetSimple CMS My SMTP Contact Plugin 1.1.1 - CSRFEPSS 0.3%