Fallos del tipo CWE-352
5735 resultadosCVE-2025-31456MEDIUMWordPress Ultimate Security Checker plugin <= 4.2 - Cross Site Request Forgery (CSRF) to Security Rescan vulnerabilityEPSS 0.1%CVE-2025-54541MEDIUMCross-Site Request Forgery in QuickCMSEPSS 0.1%CVE-2025-31602MEDIUMWordPress Apimo Connector plugin <= 2.6.5.1 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-49440MEDIUMWordPress WP Security Master plugin <= 1.0.2 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2025-63952MEDIUMA Cross-Site Request Forgery (CSRF) in the /mwapi?method=add-user component of Magewell Pro Convert v1.2.213 allows attackers to arbitrarilyEPSS 0.1%CVE-2025-31410MEDIUMWordPress WP Church Donation plugin <= 1.7 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-10311MEDIUMComment Info Detector <= 1.0.5 - Cross-Site Request Forgery to Settings UpdateEPSS 0.1%CVE-2025-24772MEDIUMWordPress Pay with Contact Form 7 plugin <= 1.0.4 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2025-22637MEDIUMWordPress Print PDF Generator and Publisher plugin <= 1.2.0 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-62009MEDIUMWordPress UPC/EAN/GTIN Code Generator plugin <= 2.0.2 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-53262MEDIUMWordPress Writesonic plugin <= 1.0.5 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-65107MEDIUMLangfuse SSO Account Takeover via CSRF or phishing attackEPSS 0.1%CVE-2025-53263MEDIUMWordPress Address Autocomplete via Google for Gravity Forms plugin <= 1.3.4 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2025-49446MEDIUMWordPress Admin Notes plugin <=1.1 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2025-30986MEDIUMWordPress Elite Video Player plugin <= 10.0.5 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2025-10309MEDIUMPayPal Forms <= 1.0.3 - Cross-Site Request ForgeryEPSS 0.1%CVE-2025-31079MEDIUMWordPress Usermaven plugin <= 1.2.1 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-46498MEDIUMWordPress Zalo Official Live Chat plugin <= 1.0.0 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2025-31438MEDIUMWordPress WP Supersized plugin <= 3.1.6 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2026-0811MEDIUMAdvanced CF7 DB <= 2.0.9 - Cross-Site Request Forgery to Form Entry DeletionEPSS 0.1%