Fallos del tipo CWE-352

5733 resultados
CVE-2025-39437MEDIUMWordPress Anthologize plugin <= 0.8.3 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2024-49313HIGHWordPress VKontakte Wall Post plugin <= 2.0 - Cross Site Scripting (XSS) vulnerabilityEPSS 0.2%CVE-2025-3635LOWMoodle: csrf risk in moodle user tours manager allows tour duplicationEPSS 0.2%CVE-2026-1394MEDIUMWP Quick Contact Us <= 1.0 - Cross-Site Request Forgery to Settings UpdateEPSS 0.2%CVE-2025-39453MEDIUMWordPress Advanced Dynamic Pricing for WooCommerce plugin <= 4.9.3 - Cross Site Request Forgery (CSRF) to Settings Change vulnerabilityEPSS 0.2%CVE-2026-22215MEDIUMwpDiscuz before 7.6.47 - Missing CSRF Protection on wpdGetFollowsPageEPSS 0.2%CVE-2024-53789HIGHWordPress Advanced What should we write next about plugin <=1.0.3 - CSRF to Stored Cross Site Scripting (XSS) vulnerabilityEPSS 0.2%CVE-2024-53769HIGHWordPress Custom Post Type to Map Store plugin <= 1.1.0 - CSRF to Stored XSS vulnerabilityEPSS 0.2%CVE-2024-53730HIGHWordPress April's Call Posts plugin <= 2.1.1 - CSRF to Stored XSS vulnerabilityEPSS 0.2%CVE-2025-12901MEDIUMAsgaros Forum <= 3.2.1 - Cross-Site Request Forgery to Subscription Settings UpdateEPSS 0.2%CVE-2025-54022MEDIUMWordPress Coupon Affiliates plugin <= 6.4.0 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.2%CVE-2024-51687HIGHWordPress Platform.ly Official plugin <= 1.1.3 - CSRF to Stored XSS vulnerabilityEPSS 0.2%CVE-2025-5932MEDIUMHomerunner <= 1.0.30 - Cross-Site Request Forgery to Settings UpdateEPSS 0.2%CVE-2024-53729HIGHWordPress Blizzard Quotes plugin <= 1.3 - CSRF to Stored Cross Site Scripting (XSS) vulnerabilityEPSS 0.2%CVE-2024-53762HIGHWordPress FastBook plugin <= 1.1 - CSRF to Stored Cross Site Scripting (XSS) vulnerabilityEPSS 0.2%CVE-2025-5937MEDIUMMicroPayments – Fans Paysite: Paid Creator Subscriptions, Digital Assets, Wallet <= 3.2.0 - Cross-Site Request Forgery to Settings ResetEPSS 0.2%CVE-2024-51684HIGHWordPress W3P SEO plugin < 1.8.6 - CSRF to Stored XSS vulnerabilityEPSS 0.2%CVE-2024-4600HIGHCross-Site Request Forgery vulnerability in Socomec Net VisionEPSS 0.2%CVE-2024-53765HIGHWordPress Mins To Read plugin <= 1.2.2 - CSRF to Stored XSS vulnerabilityEPSS 0.2%CVE-2026-11155MEDIUMInappropriate implementation in CSS in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafteEPSS 0.2%