Fallos del tipo CWE-352
5733 resultadosCVE-2026-11148MEDIUMInappropriate implementation in Payments in Google Chrome on Android prior to 149.0.7827.53 allowed a local attacker to leak cross-origin daEPSS 0.1%CVE-2025-12416MEDIUMPagerank Tools <= 1.1.5 - Cross-Site Request Forgery to Stored Cross-Site ScriptingEPSS 0.1%CVE-2025-25156HIGHWordPress Quote Comments plugin <= 3.0.0 - CSRF to Stored XSS vulnerabilityEPSS 0.1%CVE-2025-2797MEDIUMWoffice Core <= 5.4.21 - Cross-Site Request Forgery to User Registration ApprovalEPSS 0.1%CVE-2025-50370MEDIUMA Cross-Site Request Forgery (CSRF) vulnerability exists in the Inquiry Management functionality /mcgs/admin/readenq.php of the Phpgurukul MEPSS 0.1%CVE-2025-25153HIGHWordPress Simple Auto Tag plugin <= 1.1 - CSRF to Stored XSS vulnerabilityEPSS 0.1%CVE-2025-25071HIGHWordPress Vignette Ads plugin <= 0.2 - CSRF to Stored XSS vulnerabilityEPSS 0.1%CVE-2024-30154MEDIUMHCL SX is susceptible to a Cross-Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-12412MEDIUMTop Bar Notification <= 1.12 - Cross-Site Request Forgery to Stored Cross-Site ScriptingEPSS 0.1%CVE-2025-25152HIGHWordPress Smart DoFollow plugin <= 1.0.2 - CSRF to Stored XSS vulnerabilityEPSS 0.1%CVE-2025-25140HIGHWordPress Simple User Profile plugin <= 1.9 - CSRF to Stored XSS vulnerabilityEPSS 0.1%CVE-2025-47473MEDIUMWordPress PW WooCommerce Bulk Edit plugin <= 2.134 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2025-31602MEDIUMWordPress Apimo Connector plugin <= 2.6.5.1 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-24772MEDIUMWordPress Pay with Contact Form 7 plugin <= 1.0.4 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2025-47466MEDIUMWordPress Ultimate WP Mail plugin <= 1.3.4 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2025-31079MEDIUMWordPress Usermaven plugin <= 1.2.1 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-65107MEDIUMLangfuse SSO Account Takeover via CSRF or phishing attackEPSS 0.1%CVE-2025-22637MEDIUMWordPress Print PDF Generator and Publisher plugin <= 1.2.0 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2018-25150MEDIUMEcessa ShieldLink SL175EHQ 10.7.4 Cross-Site Request Forgery via User ConfigurationEPSS 0.1%CVE-2025-9625MEDIUMCoil Web Monetization <= 2.0.2 - Cross-Site Request ForgeryEPSS 0.1%