Fallos del tipo CWE-352
5744 resultadosCVE-2026-49001MEDIUMCross-Site Request Forgery (CSRF) vulnerability in ZTE ZXUniPOS NDS-LTE productEPSS 0.1%CVE-2026-40041MEDIUMPachno 1.0.6 Cross-Site Request Forgery via State-Changing EndpointsEPSS 0.1%CVE-2025-53311HIGHWordPress Navayan Subscribe plugin <= 1.13 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2025-68580MEDIUMWordPress Advanced Classifieds & Directory Pro plugin <= 3.2.9 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-53313HIGHWordPress Twitch TV Embed Suite plugin <= 2.1.0 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2025-53315HIGHWordPress Relocate Upload plugin <= 0.24.1 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2025-68584MEDIUMWordPress Vimeotheque plugin <= 2.3.5.2 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-52780HIGHWordPress Logo Manager For Samandehi plugin <= 0.5 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2025-53310HIGHWordPress HidePost plugin <= 2.3.8 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2025-55758MEDIUMExtension - jdownloads.com - CSRF vectors in jDownloads component 1.0.0 - 4.0.47 for JoomlaEPSS 0.1%CVE-2025-53308HIGHWordPress Image Slider With Description plugin <= 9.2 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2025-53305HIGHWordPress WP Forum Server plugin <= 1.8.2 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2025-58576MEDIUMCross-site request forgery vulnerability exists in GroupSession Free edition prior to ver5.3.0, GroupSession byCloud prior to ver5.3.3, and EPSS 0.1%CVE-2025-52772HIGHWordPress Virtual Moderator plugin <= 1.4 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2025-53312HIGHWordPress OnionBuzz plugin <= 1.0.7 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2025-68583MEDIUMWordPress Fast User Switching plugin <= 1.4.10 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-53317HIGHWordPress WPShapere Lite plugin <= 1.4.1 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2025-55045HIGHThe update address CSRF vulnerability in MuraCMS through 10.1.10 allows attackers to manipulate user address information through CSRF. The vEPSS 0.1%CVE-2025-60171HIGHWordPress Conditional Cart Messages for WooCommerce – YourPlugins.com Plugin <= 1.2.10 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2025-60172HIGHWordPress Flytedesk Digital Plugin <= 20181101 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%