Fallos del tipo CWE-352

5733 resultados
CVE-2025-39416HIGHWordPress translit it! plugin <= 1.6 - CSRF to Stored XSS vulnerabilityEPSS 0.1%CVE-2025-28892HIGHWordPress FTP Sync plugin <= 1.1.6 - CSRF to Stored XSS vulnerabilityEPSS 0.1%CVE-2025-28931HIGHWordPress WordPress Hashtags plugin <= 0.3.2 - CSRF to Stored XSS vulnerabilityEPSS 0.1%CVE-2025-39435HIGHWordPress My Marginalia plugin <= 1.0.6 - CSRF to Stored XSS vulnerabilityEPSS 0.1%CVE-2025-28922HIGHWordPress Go To Top plugin <= 0.0.8 - CSRF to Stored XSS vulnerabilityEPSS 0.1%CVE-2025-39414HIGHWordPress spam-stopper plugin <= 3.1.3 - CSRF to Stored XSS vulnerabilityEPSS 0.1%CVE-2025-28883HIGHWordPress WP Compare Tables plugin <= 1.0.5 - CSRF to Stored XSS vulnerabilityEPSS 0.1%CVE-2025-28932HIGHWordPress Insert Code plugin <= 2.4 - CSRF to Stored XSS vulnerabilityEPSS 0.1%CVE-2025-39430HIGHWordPress mLanguage plugin <= 1.6.1 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-39415HIGHWordPress Social Media Links plugin <= 1.0.3 - CSRF to Stored XSS vulnerabilityEPSS 0.1%CVE-2025-39422HIGHWordPress WP Social Bookmarking plugin <= 3.6 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-66531MEDIUMWordPress Salon booking system plugin <= 10.30.3 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-39418HIGHWordPress RSS Manager plugin <= 0.06 - CSRF to Stored XSS vulnerabilityEPSS 0.1%CVE-2025-36422MEDIUMIBM InfoSphere Information Server is vulnerable to cross-site request forgeryEPSS 0.1%CVE-2026-9618MEDIUMPeachPay <= 1.120.46 - Cross-Site Request Forgery to Stripe UnlinkEPSS 0.1%CVE-2025-23985MEDIUMWordPress Dynamic URL SEO plugin <= 1.0 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2018-25298MEDIUMMerge PACS 7.0 Cross-Site Request Forgery via merge-viewerEPSS 0.1%CVE-2025-13606MEDIUMExport All Posts, Products, Orders, Refunds & Users <= 2.19 - Cross-Site Request Forgery to Sensitive Information ExposureEPSS 0.1%CVE-2024-13710MEDIUMEstatebud – Properties & Listings <= 5.5.0 - Cross-Site Request Forgery to Settings UpdateEPSS 0.1%CVE-2025-0807MEDIUMCITS Support svg, webp Media and TTF,OTF File Upload, Use Custom Fonts <= 4.2 - Cross-Site Request Forgery to Settings UpdateEPSS 0.1%