Weaknesses of type CWE-352
5,712 resultsCVE-2022-36401MEDIUMWordPress TeraWallet – For WooCommerce Plugin <= 1.3.24 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2022-38356MEDIUMWordPress Pearl Plugin <= 1.3.4 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2022-47183MEDIUMWordPress Extra Block Design, Style, CSS for ANY Gutenberg Blocks Plugin <= 0.2.6 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2022-44585MEDIUMWordPress Homepage Pop-up Plugin <= 1.2.5 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2023-48754MEDIUMWordPress Delete Post Revisions In WordPress Plugin <= 4.6 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2023-23890HIGHWordPress WP Airbnb Review Slider Plugin <= 3.2 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2023-48282MEDIUMWordPress Taxonomy filter Plugin <= 2.2.9 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2022-26366MEDIUMWordPress AdRotate Banner Manager Plugin <= 5.9 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2022-41608MEDIUMWordPress Asgaros Forum Plugin <= 2.2.0 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2022-46820MEDIUMWordPress Joli Table Of Contents Plugin <= 1.3.9 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2023-48772MEDIUMWordPress Prevent Landscape Rotation Plugin <= 2.0 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2022-46815MEDIUMWordPress Conditional Shipping for WooCommerce Plugin <= 2.3.1 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2024-47846MEDIUMSpecial:DeleteCargoTable and Special:SwitchCargoTable have no CSRF protectionEPSS 0.3%CVE-2023-5899LOWCross-Site Request Forgery (CSRF) in pkp/pkp-libEPSS 0.3%CVE-2023-24415MEDIUMWordPress AI ChatBot plugin <= 4.2.8 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2023-24377MEDIUMWordPress Ecwid Shopping Cart Plugin <= 6.11.3 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2023-47806MEDIUMWordPress Disable User Login Plugin <= 1.3.7 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2022-46368MEDIUMRumpus - FTP server Cross-site request forgery (CSRF) – Create userEPSS 0.3%CVE-2023-51369MEDIUMWordPress Customize My Account for WooCommerce plugin <= 1.8.3 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.3%CVE-2024-33913CRITICALWordPress Xserver Migrator plugin <= 1.6.1 - CSRF to Arbitrary File Upload vulnerabilityEPSS 0.3%