Weaknesses of type CWE-352
5,703 resultsCVE-2023-32978MEDIUMA cross-site request forgery (CSRF) vulnerability in Jenkins LDAP Plugin allows attackers to connect to an attacker-specified LDAP server usEPSS 0.3%CVE-2022-47149MEDIUMWordPress Shortlinks by Pretty Links Plugin <= 3.4.0 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2023-26535MEDIUMWordPress Sheets To WP Table Live Sync Plugin <= 2.12.15 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2022-47177MEDIUMWordPress WP EasyPay Plugin <= 4.1 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2017-5263—Versions 4.3.2-R4 and prior of Cambium Networks cnPilot firmware lack CSRF controls that can mitigate the effects of CSRF attacks, which areEPSS 0.3%CVE-2023-1807MEDIUMElementor Addons, Widgets and Enhancements – Stax <= 1.4.3 - Cross-Site Request Forgery via toggle_widgetEPSS 0.3%CVE-2024-42764CRITICALKashipara Bus Ticket Reservation System v1.0 is vulnerable to Cross Site Request Forgery (CSRF) via /deleteTicket.php.EPSS 0.3%CVE-2024-2354MEDIUMDreamer CMS toEdit cross-site request forgeryEPSS 0.3%CVE-2022-32555HIGHUnisys Data Exchange Management Studio before 6.0.IC2 and 7.x before 7.0.IC1 doesn't have an Anti-CSRF token to authenticate the POST requesEPSS 0.3%CVE-2025-53540HIGHCSRF Vulnerability in Firmware Update Endpoints Allows Remote Code ExecutionEPSS 0.3%CVE-2024-33830HIGHidccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /admin/readDeal.php?mudi=clearWebCache.EPSS 0.3%CVE-2023-38268MEDIUMIBM InfoSphere Information Server cross-site request forgeryEPSS 0.3%CVE-2023-2352MEDIUMCHP Ads Block Detector <= 3.9.4 - Cross-Site Request Forgery via chp_abd_actionEPSS 0.3%CVE-2022-1112—Autolinks <= 1.0.1 - Stored Cross-Site Scripting via CSRFEPSS 0.3%CVE-2022-38470MEDIUMWordPress Customer Reviews for WooCommerce plugin <= 5.3.5 - Cross-Site Request Forgery (CSRF) vulnerabilityEPSS 0.3%CVE-2023-2563MEDIUMWordPress Contact Forms by Cimatti <= 1.5.7 - Cross-Site Request Forgery via _accua_forms_form_edit_actionEPSS 0.3%CVE-2023-4690MEDIUMElementor Addon Elements <= 1.12.7 - Cross-Site Request ForgeryEPSS 0.3%CVE-2023-4689MEDIUMElementor Addon Elements <= 1.12.7 - Cross-Site Request ForgeryEPSS 0.3%CVE-2024-3932LOWTotara LMS User Selector cross-site request forgeryEPSS 0.3%CVE-2022-45071MEDIUMWordPress WPML Multilingual CMS premium plugin <= 4.5.13 - Cross-Site Request Forgery (CSRF) vulnerabilityEPSS 0.3%