Fallos del tipo CWE-352
5733 resultadosCVE-2025-9892MEDIUMRestrict User Registration <= 1.0.1 - Cross-Site Request Forgery to Settings UpdateEPSS 0.1%CVE-2025-28857HIGHWordPress Rankchecker.io Integration plugin <= 1.0.9 - CSRF to Stored Cross Site Scripting (XSS) vulnerabilityEPSS 0.1%CVE-2025-28860HIGHWordPress Google News Editors Picks Feed Generator plugin <= 2.1 - CSRF to Stored XSS vulnerabilityEPSS 0.1%CVE-2025-14873MEDIUMLatePoint – Calendar Booking Plugin for Appointments and Events <= 5.2.5 - Cross-Site Request ForgeryEPSS 0.1%CVE-2026-39621HIGHWordPress SpicePress theme <= 2.3.2.5 - CSRF to Arbitrary Plugin Installation vulnerabilityEPSS 0.1%CVE-2026-39640CRITICALWordPress Theme Editor plugin <= 3.2 - Cross Site Request Forgery (CSRF) to Remote Code Execution vulnerabilityEPSS 0.1%CVE-2024-53753HIGHWordPress CultBooking Hotel Booking Engine plugin <= 2.1 - CSRF to Stored XSS vulnerabilityEPSS 0.1%CVE-2025-46743MEDIUMCross-Site Request ForgeryEPSS 0.1%CVE-2025-55744MEDIUMUnoPim vulnerable to CSRF on Product edit feature and creation of other typesEPSS 0.1%CVE-2025-68052HIGHWordPress Eagle Booking plugin <= 1.3.4.3 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2026-39619CRITICALWordPress Busiprof theme <= 2.5.2 - Cross Site Request Forgery (CSRF) to Arbitrary File Upload vulnerabilityEPSS 0.1%CVE-2026-39617CRITICALWordPress Bluestreet theme <= 1.7.3 - Cross Site Request Forgery (CSRF) to Arbitrary Plugin Installation vulnerabilityEPSS 0.1%CVE-2025-47546HIGHWordPress WP Compress plugin <= 6.30.30 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2025-23446HIGHWordPress WP SpaceContent plugin <= 0.4.5 - CSRF to Stored Cross Site Scripting (XSS) vulnerabilityEPSS 0.1%CVE-2024-53755HIGHWordPress Third Party Cookie Eraser plugin <= 1.0.2 - CSRF to Cross Site Scripting (XSS) vulnerabilityEPSS 0.1%CVE-2024-53750HIGHWordPress PayPal Responder plugin <= 1.2 - CSRF to Stored XSS vulnerabilityEPSS 0.1%CVE-2026-27609HIGHParse Dashboard Missing CSRF Protection on Agent EndpointEPSS 0.1%CVE-2025-28861HIGHWordPress WP jQuery Persian Datepicker plugin <= 0.1.0 - CSRF to Stored XSS vulnerabilityEPSS 0.1%CVE-2018-25327MEDIUMJoomla! Component Js Jobs 1.2.0 Cross-Site Request ForgeryEPSS 0.1%CVE-2025-12400MEDIUMLMB^Box Smileys <= 3.2 - Cross-Site Request Forgery to Stored Cross-Site ScriptingEPSS 0.1%