Fallos del tipo CWE-352

5740 resultados
CVE-2025-54969MEDIUMAn issue was discovered in BAE SOCET GXP before 4.6.0.2. The SOCET GXP Job Status Service does not implement CSRF protections. An attacker wEPSS 0.1%CVE-2026-34749MEDIUMPayload has a CSRF Protection Bypass in Authentication FlowEPSS 0.1%CVE-2025-13362MEDIUMNorby AI <= 1.0.3 - Cross-Site Request Forgery to Settings UpdateEPSS 0.1%CVE-2026-28741MEDIUMCSRF Protection Bypass Allows Updating a User's Authentication MethodEPSS 0.1%CVE-2025-26562HIGHWordPress RSS FIlter Plugin <= 1.2 - CSRF to Stored Cross Site Scripting (XSS) vulnerabilityEPSS 0.1%CVE-2025-23978HIGHWordPress FlashCounter plugin <= 1.1.8 - CSRF to Stored Cross Site Scripting (XSS) vulnerabilityEPSS 0.1%CVE-2025-14161MEDIUMTruefy Embed <= 1.1.0 - Cross-Site Request Forgery to 'truefy_embed_options_update' Settings UpdateEPSS 0.1%CVE-2025-13629MEDIUMWP Landing Page <= 0.9.3 - Cross-Site Request Forgery to Arbitrary Post Meta UpdateEPSS 0.1%CVE-2025-26571HIGHWordPress Wibiya Toolbar plugin <= 2.0 - CSRF to Stored XSS vulnerabilityEPSS 0.1%CVE-2025-23976HIGHWordPress Issuu Panel plugin <= 2.1.1 - CSRF to Stored Cross Site Scripting (XSS) vulnerabilityEPSS 0.1%CVE-2025-13366MEDIUMRabbit Hole <= 1.1 - Cross-Site Request Forgery to Settings ResetEPSS 0.1%CVE-2025-14062MEDIUMAnimated Pixel Marquee Creator <= 1.0.0 - Cross-Site Request Forgery via 'marquee' ParameterEPSS 0.1%CVE-2025-14162MEDIUMBMLT WordPress Plugin <= 3.11.4 - Cross-Site Request Forgery to Settings Creation and DeletionEPSS 0.1%CVE-2025-23977HIGHWordPress Post Carousel Slider plugin <= 2.0.1 - CSRF to Stored XSS vulnerabilityEPSS 0.1%CVE-2025-12190MEDIUMImage Optimizer by wps.sk <= 1.2.0 - Cross-Site Request Forgery to Bulk Image OptimizationEPSS 0.1%CVE-2025-13361MEDIUMWeb to SugarCRM Lead <= 1.0.0 - Cross-Site Request Forgery to Custom Field DeletionEPSS 0.1%CVE-2026-22483MEDIUMWordPress teachPress plugin <= 9.0.12 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-62958MEDIUMWordPress Simple Content Templates for Blog Posts & Pages plugin <= 2.2.61 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-26569HIGHWordPress Post Thumbs Plugin <= 1.5 - CSRF to Stored XSS vulnerabilityEPSS 0.1%CVE-2025-26570HIGHWordPress Glance That plugin <= 4.9 - CSRF to Stored XSS vulnerabilityEPSS 0.1%