Weaknesses of type CWE-352
5,703 resultsCVE-2024-31985MEDIUMXWiki Platform CSRF in the job schedulerEPSS 0.3%CVE-2023-23804MEDIUMWordPress HT Feed Plugin <= 1.2.7 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2023-25478MEDIUMWordPress Weather Station Plugin <= 3.8.12 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2023-45316HIGHReflected client side path traversal leading to CSRF in PlaybooksEPSS 0.3%CVE-2023-28495MEDIUMWordPress WP Shortcode by MyThemeShop Plugin <= 1.4.16 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2023-22695MEDIUMWordPress Custom Field Template Plugin <= 2.5.8 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2023-27434MEDIUMWordPress Classic Editor and Classic Widgets Plugin <= 1.2.5 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2023-23787MEDIUMWordPress Premmerce Redirect Manager Plugin <= 1.0.9 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2023-28930MEDIUMWordPress Mobile Banner Plugin <= 1.5 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2022-34347MEDIUMWordPress Download Manager plugin <= 3.2.48 - Cross-Site Request Forgery (CSRF) vulnerabilityEPSS 0.3%CVE-2023-25987MEDIUMWordPress YouTube Channel Plugin <= 3.23.3 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2023-28989MEDIUMWordPress Happy Addons for Elementor Plugin <= 3.8.2 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2023-33207MEDIUMWordPress Stop Referrer Spam Plugin <= 1.3.0 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2024-1785MEDIUMContests by Rewards Fuel <= 2.0.62 - Cross-Site Request Forgery to Stored Cross-Site ScriptingEPSS 0.3%CVE-2023-26543MEDIUMWordPress WP Meteor Page Speed Optimization Topping Plugin <= 3.1.4 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2023-0722MEDIUMWicked Folders <= 2.18.16 - Cross-Site Request Forgery via ajax_save_stateEPSS 0.3%CVE-2023-0726MEDIUMWicked Folders <= 2.18.16 - Cross-Site Request Forgery via ajax_edit_folderEPSS 0.3%CVE-2022-3233MEDIUMCross-Site Request Forgery (CSRF) in ikus060/rdiffwebEPSS 0.3%CVE-2022-2377—Directorist < 7.3.0 - Subscriber+ Arbitrary E-mail SendingEPSS 0.3%CVE-2022-4844MEDIUMCross-Site Request Forgery (CSRF) in usememos/memosEPSS 0.3%