Weaknesses of type CWE-352
5,711 resultsCVE-2023-47688MEDIUMWordPress Youtube SpeedLoad Plugin <= 0.6.3 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2024-23519MEDIUMWordPress Email Before Download Plugin <= 6.9.7 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2022-47440MEDIUMWordPress My Tickets Plugin <= 1.9.10 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2023-2440HIGHUserPro <= 5.1.1 - Cross-Site Request Forgery to Privilege EscalationEPSS 0.3%CVE-2022-44740MEDIUMWordPress Creative Mail plugin <= 1.5.4 - Multiple Cross-Site Request Forgery (CSRF) vulnerabilitiesEPSS 0.3%CVE-2022-40695MEDIUMWordPress SEO Redirection Plugin plugin <= 8.9 - Multiple Cross-Site Scripting (CSRF) vulnerabilitiesEPSS 0.3%CVE-2023-4276HIGHAbsolute Privacy <= 2.1 - Cross-Site Request Forgery to User Email/Password ChangeEPSS 0.3%CVE-2024-24837MEDIUMCross-Site Request Forgery (CSRF) vulnerability in FG PrestaShop, FG Drupal and FG Joomla WordPress pluginsEPSS 0.3%CVE-2023-4455MEDIUMCross-Site Request Forgery (CSRF) in wallabag/wallabagEPSS 0.3%CVE-2025-60739CRITICALCross Site Request Forgery (CSRF) vulnerability in Ilevia EVE X1 Server Firmware Version v4.7.18.0.eden and before, Logic Version v6.00 - 20EPSS 0.3%CVE-2024-10593MEDIUMWPForms – Easy Form Builder for WordPress <= 1.9.1.6 - Cross-Site Request Forgery (CSRF) to Plugin's Log DeletionEPSS 0.3%CVE-2022-47162MEDIUMWordPress DH – Anti AdBlocker Plugin <= 36 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2022-41634MEDIUMWordPress Media Library Folders plugin <= 7.1.1 - Cross-Site Request Forgery (CSRF) vulnerabilityEPSS 0.3%CVE-2024-4532MEDIUMBusiness Card <= 1.0.0 - Arbitrary Card Deletion via CSRFEPSS 0.3%CVE-2022-47159MEDIUMWordPress Logaster Logo Generator Plugin <= 1.3 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2022-47155MEDIUMWordPress Slider by Supsystic Plugin <= 1.8.5 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2025-4375MEDIUMCross-Site Request Forgery vulnerability in Pro Cloud Server's WebEAEPSS 0.3%CVE-2023-4731MEDIUMLadiApp: Landing Page, PopupX, Marketing Automation, Affiliate Marketing… <= 4.4 - Cross-Site Request Forgery via init_endpointEPSS 0.3%CVE-2022-23771HIGHIPTIME NAS1DUAL CSRF VulnerabilityEPSS 0.3%CVE-2024-0432MEDIUMGestpay for WooCommerce <= 20221130 - Cross-Site Request Forgery (CSRF) via ajax_delete_cardEPSS 0.3%