Weaknesses of type CWE-352

5,712 results
CVE-2025-26748HIGHWordPress Arkhe theme <= 3.12.0 - CSRF to Local File Inclusion vulnerabilityEPSS 0.3%CVE-2024-57429MEDIUMA cross-site request forgery (CSRF) vulnerability in the pjActionUpdate function of PHPJabbers Cinema Booking System v2.0 allows remote attaEPSS 0.3%CVE-2023-49840MEDIUMWordPress Multi Currency For WooCommerce Plugin <= 1.5.5 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2023-31077MEDIUMWordPress Export WP Page to Static HTML/CSS Plugin <= 2.1.9 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2022-44387HIGHEyouCMS V1.5.9-UTF8-SP1 was discovered to contain a Cross-Site Request Forgery (CSRF) via the Basic Information component under the Edit MemEPSS 0.3%CVE-2023-47819MEDIUMWordPress Easy Call Now by ThikShare Plugin <= 1.1.0 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2023-46620MEDIUMWordPress DeepL Pro API translation Plugin <= 2.3.9.1 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2024-5712HIGHCSRF Vulnerability in stitionai/devikaEPSS 0.3%CVE-2023-46638MEDIUMWordPress WCP OpenWeather Plugin <= 2.5.0 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2022-38095MEDIUMWordPress Advanced Dynamic Pricing for WooCommerce plugin <= 4.1.3 - Cross-Site Request Forgery (CSRF) vulnerabilityEPSS 0.3%CVE-2023-47686MEDIUMWordPress Arigato Autoresponder and Newsletter Plugin <= 2.7.2.2 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2023-47645MEDIUMWordPress RegistrationMagic Plugin <= 5.2.2.6 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2024-1504MEDIUMSecuPress Free — WordPress Security <= 2.2.5.1 - Cross-Site Request Forgery to Banned IP AddressEPSS 0.3%CVE-2023-46618MEDIUMWordPress Category SEO Meta Tags Plugin <= 2.5 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2026-49871LOWApache APISIX: cas-auth login CSRF / session injection issueEPSS 0.3%CVE-2023-49838MEDIUMCross-Site Request Forgery (CSRF) vulnerability in multiple themes by KlbThemeEPSS 0.3%CVE-2023-47791MEDIUMWordPress Leadster Plugin <= 1.1.2 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2025-3808MEDIUMzhenfeng13 My-BBS cross-site request forgeryEPSS 0.3%CVE-2023-47789MEDIUMWordPress WooCommerce Canada Post Shipping Plugin <= 2.8.3 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2022-45072MEDIUMWordPress WPML Multilingual CMS premium plugin <= 4.5.13 - Cross-Site Request Forgery (CSRF) vulnerabilityEPSS 0.3%