Weaknesses of type CWE-352

5,712 results
CVE-2023-22678MEDIUMWordPress Superior FAQ Plugin <= 1.0.2 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2025-32641CRITICALWordPress Anant Addons for Elementor plugin <= 1.1.8 - CSRF to Arbitrary Plugin Installation vulnerabilityEPSS 0.3%CVE-2022-45073MEDIUMWordPress REST API Authentication plugin <= 2.4.0 - Cross-Site Request Forgery (CSRF) vulnerabilityEPSS 0.3%CVE-2023-24415MEDIUMWordPress AI ChatBot plugin <= 4.2.8 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2024-47846MEDIUMSpecial:DeleteCargoTable and Special:SwitchCargoTable have no CSRF protectionEPSS 0.3%CVE-2026-38934HIGHCross Site Request Forgery vulnerability in diskoverdata diskover-community v.2.3.5. and before allows a remote attacker to escalate privileEPSS 0.3%CVE-2023-23813MEDIUMWordPress My Calendar Plugin <= 3.4.3 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2022-46842MEDIUMWordPress JS Help Desk plugin <= 2.7.1 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2023-5626LOWCross-Site Request Forgery (CSRF) in pkp/ojsEPSS 0.3%CVE-2022-45807MEDIUMWordPress WP Mail Log Plugin <= 1.0.1 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2023-23726MEDIUMWordPress Tickera – WordPress Event Ticketing plugin <= 3.5.1.0 - CSRF Leading To Post Status Change VulnerabilityEPSS 0.3%CVE-2023-48282MEDIUMWordPress Taxonomy filter Plugin <= 2.2.9 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2022-46854MEDIUMWordPress Launchpad – Coming Soon & Maintenance Mode Plugin Plugin <= 1.0.13 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2022-41608MEDIUMWordPress Asgaros Forum Plugin <= 2.2.0 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2023-23797MEDIUMWordPress Auto YouTube Importer Plugin <= 1.0.3 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2023-5893LOWCross-Site Request Forgery (CSRF) in pkp/pkp-libEPSS 0.3%CVE-2022-38356MEDIUMWordPress Pearl Plugin <= 1.3.4 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2022-41620MEDIUMWordPress SeoSamba for WordPress Webmasters Plugin <= 1.0.5 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2023-23790HIGHWordPress Pods Plugin <= 2.9.10.2 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2022-3451MEDIUMProduct Stock Manager < 1.0.5 - Subscriber+ Unauthorised AJAX CallsEPSS 0.3%