Fallos del tipo CWE-352
5740 resultadosCVE-2025-14454MEDIUMImage Slider by Ays- Responsive Slider and Carousel <= 2.7.0 - Cross-Site Request Forgery to Arbitrary Slider DeletionEPSS 0.1%CVE-2025-31413MEDIUMWordPress Element Pack Elementor Addons plugin <= 8.3.13 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-5933MEDIUMRD Contacto <= 1.4 - Cross-Site Request Forgery to Settings UpdateEPSS 0.1%CVE-2025-31439MEDIUMWordPress Browser Caching with .htaccess 1.2.1 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2025-5924MEDIUMWP Firebase Push Notification <= 1.2.0 - Cross-Site Request Forgery to Broadcast NotificationEPSS 0.1%CVE-2025-14160MEDIUMUpcoming for Calendly <= 1.2.4 - Cross-Site Request Forgery to Settings UpdateEPSS 0.1%CVE-2025-13684MEDIUMARK Related Posts <= 2.19 - Cross-Site Request Forgery to Settings UpdateEPSS 0.1%CVE-2025-4337MEDIUMAHAthat Plugin <= 1.6 - Cross-Site Request Forgery to AHA Page DeletionEPSS 0.1%CVE-2025-34410HIGH1Panel CSRF in Change Username Functionality Allows Account LockoutEPSS 0.1%CVE-2026-28477MEDIUMOpenClaw < 2026.2.14 - OAuth State Validation Bypass in Manual Chutes Login FlowEPSS 0.1%CVE-2025-11886MEDIUMCTL Arcade Lite <= 1.0 - Cross-Site Request Forgery to Plugin Activation and DeactivationEPSS 0.1%CVE-2026-0658MEDIUMFive Star Restaurant Reservations < 2.7.9 - Arbitrary Bookings Deletion via CSRFEPSS 0.1%CVE-2025-5925MEDIUMBunny’s Print CSS <= 0.95 - Cross-Site Request Forgery to Settings UpdateEPSS 0.1%CVE-2026-44347MEDIUMWarpgate: SSO CSRF -- State Token Not Validated on ReturnEPSS 0.1%CVE-2026-22359MEDIUMWordPress Wordpress Movies Bulk Importer plugin <= 1.0 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2026-8422MEDIUMRemove meta boxes per user role <= 1.01 - Cross-Site Request Forgery to Settings UpdateEPSS 0.1%CVE-2025-43296MEDIUMA logic issue was addressed with improved validation. This issue is fixed in macOS Tahoe 26. An app may bypass Gatekeeper checks.EPSS 0.1%CVE-2025-23972MEDIUMWordPress Contact Form 7 reCAPTCHA plugin <= 1.2.0 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2025-14615HIGHDASHBOARD BUILDER <= 1.5.7 - Cross-Site Request Forgery to SQL InjectionEPSS 0.1%CVE-2025-52795HIGHWordPress WP Front User Submit / Front Editor plugin <= 5.0.6 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%