Fallos del tipo CWE-352
5728 resultadosCVE-2024-33678MEDIUMWordPress ClickCease Click Fraud Protection plugin <= 3.2.7 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2025-1764HIGHLoginPress <= 3.3.1 - Cross-Site Request Forgery to Arbitrary Options UpdateEPSS 0.2%CVE-2024-31433MEDIUMWordPress The Events Calendar plugin <= 6.3.0 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2024-20986MEDIUMVulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Core). Supported versions that are affected areEPSS 0.2%CVE-2023-3589MEDIUMCross-Site Request Forgery (CSRF) vulnerability affecting Teamwork Cloud from No Magic Release 2021x through No Magic Release 2022xEPSS 0.2%CVE-2024-33689MEDIUMWordPress Radio Station plugin <= 2.5.7 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2024-54426HIGHWordPress LeaderBoard Plugin plugin <= 1.2.4 - CSRF to Stored Cross-Site Scripting vulnerabilityEPSS 0.2%CVE-2024-54413HIGHWordPress Display Future Posts plugin <= 0.2.3 - CSRF to Stored Cross-Site Scripting vulnerabilityEPSS 0.2%CVE-2024-54440HIGHWordPress WP-Ban-User plugin <= 1.0 - CSRF to Stored XSS vulnerabilityEPSS 0.2%CVE-2023-32104MEDIUMWordPress MyCurator Content Curation Plugin <= 3.74 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.2%CVE-2024-6959HIGHDenial of Service (DOS) in multipart boundary while uploading file in parisneo/lollms-webuiEPSS 0.2%CVE-2024-54411HIGHWordPress WP Controller plugin <= 3.2.0 - CSRF to Stored Cross-Site Scripting vulnerabilityEPSS 0.2%CVE-2024-54386HIGHWordPress Push Monkey Pro plugin <= 3.9 - CSRF to Stored XSS vulnerabilityEPSS 0.2%CVE-2024-31303MEDIUMWordPress Sign-up Sheets plugin <= 2.2.11.1 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2024-12545MEDIUMScratch & Win – Giveaways and Contests <= 2.7.1 - Cross-Site Request Forgery via reset_installation FunctionEPSS 0.2%CVE-2024-54433HIGHWordPress Simple Booking – Widget plugin <= 1.1 - CSRF to Stored XSS vulnerabilityEPSS 0.2%CVE-2024-54416HIGHWordPress Wp Login with Ajax plugin <= 0.6 - CSRF to Stored Cross-Site Scripting vulnerabilityEPSS 0.2%CVE-2024-54434HIGHWordPress phZoom plugin <= 1.2.92 - CSRF to Stored XSS vulnerabilityEPSS 0.2%CVE-2023-40009MEDIUMWordPress WP Pipes Plugin <= 1.4.0 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.2%CVE-2024-1907MEDIUMCategorify <= 1.0.7.4 - Cross-Site Request Forgery via categorifyAjaxDeleteCategoryEPSS 0.2%