Weaknesses of type CWE-352
5,711 resultsCVE-2024-42555HIGHA Cross-Site Request Forgery (CSRF) in the component admin_room_removed.php of Hotel Management System commit 91caab8 allows attackers to esEPSS 0.3%CVE-2023-44385HIGHClient-Side Request Forgery in Home Assistant iOS/macOS native AppsEPSS 0.3%CVE-2023-28497MEDIUMWordPress Slideshow Gallery Plugin <= 1.7.6 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2022-44737MEDIUMWordPress All In One WP Security plugin <= 5.1.0 - Multiple Cross-Site Request Forgery (CSRF) vulnerabilitiesEPSS 0.3%CVE-2024-56207HIGHWordPress EditionGuard for WooCommerce – eBook Sales with DRM plugin <= 3.4.2 - CSRF to Privilege Escalation vulnerabilityEPSS 0.3%CVE-2022-38660HIGHHCL XPages applications are susceptible to Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.3%CVE-2024-40476HIGHA Cross-Site Request Forgery (CSRF) vulnerability was found in SourceCodester Best House Rental Management System v1.0. This could lead to aEPSS 0.3%CVE-2024-4597MEDIUMCross-Site Request Forgery (CSRF) in GitLabEPSS 0.3%CVE-2023-27234MEDIUMA Cross-Site Request Forgery (CSRF) in /Sys/index.html of Jizhicms v2.4.5 allows attackers to arbitrarily make configuration changes within EPSS 0.3%CVE-2023-1871MEDIUMYourChannel <= 1.2.4 - Cross-Site Request Forgery to Plugin Language Translation ResetEPSS 0.3%CVE-2023-2526MEDIUMEasy Google Maps <= 1.11.7 - Cross-Site Request Forgery via AJAX actionEPSS 0.3%CVE-2024-42578HIGHA Cross-Site Request Forgery (CSRF) in the component edit_product.php of Warehouse Inventory System v2.0 allows attackers to escalate privilEPSS 0.3%CVE-2023-32514MEDIUMWordPress Google Site Verification plugin using Meta Tag Plugin <= 1.2 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2024-22475MEDIUMCross-site request forgery vulnerability in multiple printers and scanners which implement Web Based Management provided by BROTHER INDUSTRIEPSS 0.3%CVE-2024-54792MEDIUMA Cross-Site Request Forgery (CSRF) vulnerability has been found in SpagoBI v3.5.1 in the user administration panel. An authenticated user cEPSS 0.3%CVE-2022-36798MEDIUMWordPress Mega Addons For WPBakery Page Builder plugin <= 4.2.7 - Cross-Site Request Forgery (CSRF) vulnerabilityEPSS 0.3%CVE-2023-32583MEDIUMWordPress WP All Backup Plugin <= 2.4.3 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2023-0497MEDIUMHT Portfolio < 1.1.6 - Arbitrary Plugin Activation via CSRFEPSS 0.3%CVE-2024-3059MEDIUMENL Newsletter <= 1.0.1 - Campaign Deletion via CSRFEPSS 0.3%CVE-2023-23465CRITICALMedia CP Media Control Panel – CSRFEPSS 0.3%