Fallos del tipo CWE-352
5733 resultadosCVE-2025-39422HIGHWordPress WP Social Bookmarking plugin <= 3.6 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-32545HIGHWordPress WooCommerce Products without featured images Plugin <= 0.1 - CSRF to Reflected Cross Site Scripting (XSS) vulnerabilityEPSS 0.1%CVE-2025-66529MEDIUMWordPress Chartify plugin <= 3.6.3 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-28932HIGHWordPress Insert Code plugin <= 2.4 - CSRF to Stored XSS vulnerabilityEPSS 0.1%CVE-2025-39414HIGHWordPress spam-stopper plugin <= 3.1.3 - CSRF to Stored XSS vulnerabilityEPSS 0.1%CVE-2025-39415HIGHWordPress Social Media Links plugin <= 1.0.3 - CSRF to Stored XSS vulnerabilityEPSS 0.1%CVE-2025-28922HIGHWordPress Go To Top plugin <= 0.0.8 - CSRF to Stored XSS vulnerabilityEPSS 0.1%CVE-2025-39417HIGHWordPress Redirect wordpress to welcome or landing page plugin <= 2.0 - CSRF to Stored XSS vulnerabilityEPSS 0.1%CVE-2025-14159MEDIUMSecure Copy Content Protection and Content Locking <= 4.9.2 - Cross-Site Request Forgery to Data ExportEPSS 0.1%CVE-2025-39440HIGHWordPress Broken Links Remover plugin <= 1.2.2 - CSRF to Stored XSS vulnerabilityEPSS 0.1%CVE-2025-28901HIGHWordPress Members page only for logged in users plugin <= 1.4.2 - CSRF to Stored XSS vulnerabilityEPSS 0.1%CVE-2025-39421HIGHWordPress WP Sticky Side Buttons plugin <= 2.1 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-28925HIGHWordPress WATI Chat and Notification plugin <= 1.1.2 - CSRF to Stored Cross Site Scripting (XSS) vulnerabilityEPSS 0.1%CVE-2026-5923MEDIUMPoly Voice – Potential Unauthorized Modification of WebUI using CSRF AttackEPSS 0.1%CVE-2025-58831MEDIUMWordPress Parallax Scrolling Enllax.js Plugin <= 0.0.6 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2025-32546HIGHWordPress All push notification for WP Plugin <= 1.5.3 - CSRF to Reflected Cross Site Scripting (XSS) vulnerabilityEPSS 0.1%CVE-2025-39416HIGHWordPress translit it! plugin <= 1.6 - CSRF to Stored XSS vulnerabilityEPSS 0.1%CVE-2026-24007MEDIUMTuleap is missing CSRF protection in the Overview inconsistent itemsEPSS 0.1%CVE-2025-28923HIGHWordPress No Disposable Email plugin <= 2.5.1 - CSRF to Stored XSS vulnerabilityEPSS 0.1%CVE-2025-39424HIGHWordPress Simple Maps plugin <= 0.98 - CSRF to XSS vulnerabilityEPSS 0.1%