Weaknesses of type CWE-352

5,694 results
CVE-2024-35108HIGHidccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /admin/homePro_deal.php?mudi=del&dataType=&dataEPSS 0.3%CVE-2023-4837HIGHCross-site request forgery (CSRF) in SmodBIPEPSS 0.3%CVE-2022-4850MEDIUMCross-Site Request Forgery (CSRF) in usememos/memosEPSS 0.3%CVE-2024-22603HIGHFlyCms v1.0 contains a Cross-Site Request Forgery (CSRF) vulnerability via /system/links/add_linkEPSS 0.3%CVE-2024-26350HIGHflusity-CMS v2.33 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /core/tools/update_contact_form_settings.pEPSS 0.3%CVE-2026-40948MEDIUMApache Airflow Providers Keycloak: OAuth Login CSRF — Missing State Parameter in Keycloak Auth ManagerEPSS 0.3%CVE-2025-1305HIGHNewsBlogger <= 0.2.5.4 - Cross-Site Request Forgery to Arbitrary Plugin InstallationEPSS 0.3%CVE-2023-35912MEDIUMWordPress Potent Donations for WooCommerce Plugin <= 1.1.9 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2024-8414MEDIUMSourceCodester Insurance Management System cross-site request forgeryEPSS 0.3%CVE-2023-0522MEDIUMEnable/Disable Auto Login when Register <= 1.1.0 - Settings Update via CSRFEPSS 0.3%CVE-2021-4397MEDIUMStaff Directory Plugin <= 3.6 - Cross-Site Request Forgery BypassEPSS 0.3%CVE-2021-4404MEDIUMEvent Espresso 4 Decaf <= 4.10.11 - Cross-Site Request Forgery BypassEPSS 0.3%CVE-2022-46059MEDIUMAeroCMS v0.0.1 is vulnerable to Cross Site Request Forgery (CSRF).EPSS 0.3%CVE-2022-29557HIGHLexisNexis Firco Compliance Link 3.7 allows CSRF.EPSS 0.3%CVE-2023-31089MEDIUMWordPress Video XML Sitemap Generator Plugin <= 1.0.0 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2024-9281MEDIUMbg5sbk MiniCMS post-edit.php cross-site request forgeryEPSS 0.3%CVE-2024-7169MEDIUMSourceCodester School Fees Payment System ajax.php cross-site request forgeryEPSS 0.3%CVE-2024-22643MEDIUMA Cross-Site Request Forgery (CSRF) vulnerability in SEO Panel version 4.10.0 allows remote attackers to perform unauthorized user password EPSS 0.3%CVE-2022-2449MEDIUMreSmush.it Image Optimizer < 0.4.7 - Multiple CSRFEPSS 0.3%CVE-2022-47443MEDIUMWordPress Multi Rating Plugin <= 5.0.5 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%