Fallos del tipo CWE-352

5733 resultados
CVE-2026-25812CRITICALPlaciPy is Missing CSRF Protection on State-Changing EndpointsEPSS 0.1%CVE-2025-12590MEDIUMYSlider <= 1.1 - Cross-Site Request Forgery to Stored Cross-Site ScriptingEPSS 0.1%CVE-2025-59480MEDIUMInadequate validation of SSO redirect credentials permits credential theftEPSS 0.1%CVE-2024-13338MEDIUMWebcraftic Clearfy – WordPress optimization plugin <= 2.3.1 - Cross-Site Request Forgery to Clear CacheEPSS 0.1%CVE-2025-9882MEDIUMosTicket WP Bridge <= 1.9.2 - Cross-Site Request Forgery to Stored Cross-Site ScriptingEPSS 0.1%CVE-2025-27336MEDIUMWordPress Just Variables Plugin <= 1.2.3 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-30965MEDIUMWordPress WPJobBoard plugin < 5.11.1 - Multiple Cross Site Request Forgery (CSRF) vulnerabilities vulnerabilityEPSS 0.1%CVE-2025-7688MEDIUMAdd User Meta <= 1.0.1 - Cross-Site Request Forgery to Stored Cross-Site ScriptingEPSS 0.1%CVE-2025-24549HIGHWordPress Post Meta plugin <= 1.0.9 - Reflected Cross Site Scripting (XSS) vulnerabilityEPSS 0.1%CVE-2025-9620MEDIUMSeo Monster <= 3.3.3 - Cross-Site Request Forgery to Stored Cross-Site ScriptingEPSS 0.1%CVE-2025-25126HIGHWordPress ZMSEO plugin <= 1.14.1 - CSRF to Stored XSS vulnerabilityEPSS 0.1%CVE-2025-9881MEDIUMUltimate Blogroll <= 2.5.2 - Cross-Site Request Forgery to Stored Cross-Site ScriptingEPSS 0.1%CVE-2025-25160HIGHWordPress Style Tweaker plugin <= 0.11 - CSRF to Stored XSS vulnerabilityEPSS 0.1%CVE-2024-45983MEDIUMA Cross-Site Request Forgery (CSRF) vulnerability exists in kishan0725's Hospital Management System version 6.3.5. The vulnerability allows EPSS 0.1%CVE-2025-12586MEDIUMConditional Maintenance Mode for WordPress <= 1.0.0 - Cross-Site Request ForgeryEPSS 0.1%CVE-2025-9883MEDIUMBrowser Sniff <= 2.3 - Cross-Site Request Forgery to Stored Cross-Site ScriptingEPSS 0.1%CVE-2024-13339MEDIUMDeBounce Email Validator <= 5.8.0 - Cross-Site Request Forgery to Stored Cross-Site ScriptingEPSS 0.1%CVE-2025-47451MEDIUMWordPress Product Quantity Dropdown For Woocommerce plugin <= 1.2 - Cross Site Request Forgery (CSRF) to Settings Change vulnerabilityEPSS 0.1%CVE-2026-8938MEDIUMauto making JSON-LD <= 4.5.3 - Cross-Site Request Forgery to Plugin Certification Settings via Nonce Validation BypassEPSS 0.1%CVE-2026-8941MEDIUMCDN Linker lite <= 1.3.1 - Cross-Site Request Forgery to Plugin Settings UpdateEPSS 0.1%