Weaknesses of type CWE-352

5,711 results
CVE-2025-25928HIGHA Cross-Site Request Forgery (CSRF) in the component /admin/users/user.form of Openmrs 2.4.3 Build 0ff0ed allows attackers to execute arbitrEPSS 0.3%CVE-2021-36854MEDIUMWordPress Booking Ultra Pro plugin <= 1.1.4 - Multiple Cross-Site Request Forgery (CSRF) vulnerabilitiesEPSS 0.3%CVE-2023-22686MEDIUMWordPress Nice PayPal Button Lite Plugin <= 1.3.5 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2022-46842MEDIUMWordPress JS Help Desk plugin <= 2.7.1 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2023-49760MEDIUMWordPress WPsoonOnlinePage Plugin <= 1.9 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2023-24377MEDIUMWordPress Ecwid Shopping Cart Plugin <= 6.11.3 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2022-36401MEDIUMWordPress TeraWallet – For WooCommerce Plugin <= 1.3.24 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2022-38356MEDIUMWordPress Pearl Plugin <= 1.3.4 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2022-43469MEDIUMWordPress Corona Virus (COVID-19) Banner & Live Data Plugin <= 1.7.0.6 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2022-45080MEDIUMWordPress Add Multiple Marker Plugin <= 1.2 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2022-46856MEDIUMWordPress Woocommerce Product Designer Plugin <= 4.3.3 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2022-41608MEDIUMWordPress Asgaros Forum Plugin <= 2.2.0 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2024-47846MEDIUMSpecial:DeleteCargoTable and Special:SwitchCargoTable have no CSRF protectionEPSS 0.3%CVE-2023-48282MEDIUMWordPress Taxonomy filter Plugin <= 2.2.9 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2023-49775MEDIUMWordPress CSV Importer Plugin <= 0.3.8 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2023-46617MEDIUMWordPress AdFoxly – Ad Manager, AdSense Ads & Ads.txt Plugin <= 1.8.5 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2025-32641CRITICALWordPress Anant Addons for Elementor plugin <= 1.1.8 - CSRF to Arbitrary Plugin Installation vulnerabilityEPSS 0.3%CVE-2025-11029MEDIUMgivanz Vvveb cross-site request forgeryEPSS 0.3%CVE-2023-24382MEDIUMWordPress Material Design Icons for Page Builders Plugin <= 1.4.2 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2026-38934HIGHCross Site Request Forgery vulnerability in diskoverdata diskover-community v.2.3.5. and before allows a remote attacker to escalate privileEPSS 0.3%