Fallos del tipo CWE-352

5715 resultados
CVE-2023-49844MEDIUMWordPress WPPerformanceTester Plugin <= 2.0.0 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2023-39412MEDIUMCross-site request forgery in some Intel Unison software may allow an authenticated user to potentially enable escalation of privilege via nEPSS 0.3%CVE-2024-31902MEDIUMIBM InfoSphere Information Server cross-site request forgeryEPSS 0.3%CVE-2023-25056MEDIUMWordPress Feed Them Social Plugin <= 3.0.2 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2023-33931MEDIUMWordPress YouTube Playlist Player Plugin <= 4.6.4 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2023-25038MEDIUMWordPress For the visually impaired Plugin <= 0.58 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2023-33212MEDIUMWordPress JetFormBuilder Plugin <= 3.0.6 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2023-23724MEDIUMWordPress WordPress Email Marketing Plugin – WP Email Capture Plugin <= 3.9.3 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2022-46813MEDIUMWordPress Advanced Database Cleaner Plugin <= 3.1.1 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2022-4846MEDIUMCross-Site Request Forgery (CSRF) in usememos/memosEPSS 0.3%CVE-2023-25029MEDIUMWordPress WP Social Bookmarking Light Plugin <= 2.0.7 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2023-47792MEDIUMWordPress Big File Uploads Plugin <= 2.1.1 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2023-49749MEDIUMWordPress SureTriggers Plugin <= 1.0.23 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2024-48758MEDIUMdingfanzu CMS V1.0 was discovered to contain a Cross-Site Request Forgery (CSRF) via the addPro parameter of the component doAdminAction.phpEPSS 0.3%CVE-2023-25708MEDIUMWordPress WP VR – 360 Panorama and Virtual Tour Builder For WordPress Plugin <= 8.2.7 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2023-24007MEDIUMWordPress Admin Block Country Plugin <= 7.1.4 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2022-45367MEDIUMWordPress Custom Order Numbers for WooCommerce Plugin <= 1.4.0 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2023-26014MEDIUMWordPress Minify HTML Plugin <= 2.1.7 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2023-25487MEDIUMWordPress PixTypes Plugin <= 1.4.14 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2023-23801MEDIUMWordPress Really Simple Google Tag Manager Plugin <= 1.0.6 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%