Weaknesses of type CWE-352

5,712 results
CVE-2023-46629MEDIUMWordPress Remove Add to Cart WooCommerce Plugin <= 1.4.4 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2023-48755MEDIUMWordPress teachPress Plugin <= 9.0.4 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2023-49840MEDIUMWordPress Multi Currency For WooCommerce Plugin <= 1.5.5 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2022-40671MEDIUMWordPress Rate my Post – WP Rating System plugin <= 3.3.4 - Cross-Site Request Forgery (CSRF) vulnerabilityEPSS 0.3%CVE-2024-1504MEDIUMSecuPress Free — WordPress Security <= 2.2.5.1 - Cross-Site Request Forgery to Banned IP AddressEPSS 0.3%CVE-2023-50372MEDIUMWordPress Custom Post Type Page Template Plugin <= 1.1 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2023-47791MEDIUMWordPress Leadster Plugin <= 1.1.2 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2023-47686MEDIUMWordPress Arigato Autoresponder and Newsletter Plugin <= 2.7.2.2 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2023-49838MEDIUMCross-Site Request Forgery (CSRF) vulnerability in multiple themes by KlbThemeEPSS 0.3%CVE-2022-47138MEDIUMWordPress LOGIN AND REGISTRATION ATTEMPTS LIMIT Plugin <= 2.1 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2022-47447MEDIUMWordPress WP-Advanced-Search Plugin <= 3.3.8 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2023-20221MEDIUMA vulnerability in the web-based management interface of Cisco IP Phone 6800, 7800, and 8800 Series with Multiplatform Firmware could allow EPSS 0.3%CVE-2024-20281HIGHA vulnerability in the web-based management interface of Cisco Nexus Dashboard and Cisco Nexus Dashboard hosted services could allow an unauEPSS 0.3%CVE-2025-1745MEDIUMLinZhaoguan pb-cms Logout cross-site request forgeryEPSS 0.3%CVE-2022-47143MEDIUMWordPress Multiple Page Generator Plugin – MPG Plugin <= 3.3.9 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2023-41686MEDIUMWordPress Woocommerce Support System plugin <= 1.2.2 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.3%CVE-2024-24819MEDIUMicingaweb2-module-incubator base implementation for HTML forms is susceptible to CSRFEPSS 0.3%CVE-2022-47422MEDIUMWordPress WordPress Stripe Donation and Payment Plugin Plugin <= 3.1.5 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2022-47135MEDIUMWordPress Chronoforms Plugin <= 7.0.9 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2022-47154MEDIUMWordPress CSS JS Manager Plugin <= 2.4.49 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%