Fallos del tipo CWE-352
5728 resultadosCVE-2026-12158HIGHRegistrationMagic <= 6.0.9.1 - Cross-Site Request Forgery to Privilege Escalation via 'rmc_assign_user_role_action' ParameterEPSS 0.2%CVE-2024-1906MEDIUMCategorify <= 1.0.7.4 - Cross-Site Request Forgery via categorifyAjaxAddCategoryEPSS 0.2%CVE-2024-1592MEDIUMComplianz – GDPR/CCPA Cookie Consent <= 6.5.6 - Cross-Site Request Forgery to Data Request DeletionEPSS 0.2%CVE-2025-6478MEDIUMCodeAstro Expense Management System cross-site request forgeryEPSS 0.2%CVE-2020-28398HIGHA vulnerability has been identified in RUGGEDCOM ROX MX5000 (All versions < V2.16.0), RUGGEDCOM ROX MX5000RE (All versions < V2.16.0), RUGGEEPSS 0.2%CVE-2023-31174HIGHCross-Site Request Forgery (CSRF)EPSS 0.2%CVE-2023-46201HIGHWordPress Auto Login New User After Registration Plugin <= 1.9.6 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.2%CVE-2025-2111HIGHWP Headers And Footers <= 3.1.1 - Cross-Site Request Forgery to Arbitrary Options UpdateEPSS 0.2%CVE-2024-12386HIGHWP Abstracts <= 2.7.3 - Cross-Site Request Forgery to Arbitrary Account DeletionEPSS 0.2%CVE-2023-45642MEDIUMWordPress Snap Pixel Plugin <= 1.5.7 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.2%CVE-2018-25176HIGHAlive Parish 2.0.4 SQL Injection and Arbitrary File UploadEPSS 0.2%CVE-2025-1383MEDIUMPodlove Podcast Publisher <= 4.2.2 - Cross-Site Request Forgery via ajax_transcript_delete FunctionEPSS 0.2%CVE-2024-2970MEDIUMNews Wall <= 1.1.0 - Cross-Site Request Forgery to Plugin Settings UpdateEPSS 0.2%CVE-2023-41732MEDIUMWordPress CP Blocks Plugin <= 1.0.20 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.2%CVE-2025-0669HIGHBOINC Server Cross-Site Request ForgeryEPSS 0.2%CVE-2025-13119MEDIUMFabian Ros/SourceCodester Simple E-Banking System cross-site request forgeryEPSS 0.2%CVE-2021-47754MEDIUMArunna 1.0.0 - 'Multiple' Cross-Site Request Forgery (CSRF)EPSS 0.2%CVE-2025-1441MEDIUMRoyal Elementor Addons and Templates <= 1.7.1007 - Cross-Site Request Forgery to Reflected Cross-Site ScriptingEPSS 0.2%CVE-2023-37992MEDIUMWordPress Smarty for WordPress Plugin <= 3.1.35 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.2%CVE-2025-63955HIGHA Cross-Site Request Forgery (CSRF) vulnerability in the manage-students.php component of PHPGurukul Student Record System v3.2 allows an atEPSS 0.2%