Fallos del tipo CWE-352

5688 resultados
CVE-2021-34661MEDIUMWP Fusion Lite <= 3.37.18 Cross-Site Request Forgery to Data DeletionEPSS 0.5%CVE-2023-35148A cross-site request forgery (CSRF) vulnerability in Jenkins Digital.ai App Management Publisher Plugin 2.6 and earlier allows attackers to EPSS 0.5%CVE-2023-31061HIGHRepetier Server through 1.4.10 does not have CSRF protection.EPSS 0.5%CVE-2022-2353MEDIUMCross-Site Request Forgery (CSRF) in microweber/microweberEPSS 0.5%CVE-2022-41227HIGHA cross-site request forgery (CSRF) vulnerability in Jenkins NS-ND Integration Performance Publisher Plugin 4.8.0.129 and earlier allows attEPSS 0.4%CVE-2023-32987HIGHA cross-site request forgery (CSRF) vulnerability in Jenkins Reverse Proxy Auth Plugin 1.7.4 and earlier allows attackers to connect to an aEPSS 0.4%CVE-2023-32989HIGHA cross-site request forgery (CSRF) vulnerability in Jenkins Azure VM Agents Plugin 852.v8d35f0960a_43 and earlier allows attackers to conneEPSS 0.4%CVE-2021-24380Shantz WordPress QOTD <= 1.2.2 - Arbitrary Setting Update via CSRFEPSS 0.4%CVE-2023-32995HIGHA cross-site request forgery (CSRF) vulnerability in Jenkins SAML Single Sign On(SSO) Plugin 2.0.0 and earlier allows attackers to send an HEPSS 0.4%CVE-2022-1967WP Championship < 9.3 - Multiple CSRFEPSS 0.4%CVE-2024-39410MEDIUMAdobe Commerce | Cross-Site Request Forgery (CSRF) (CWE-352)EPSS 0.4%CVE-2024-39408MEDIUMAdobe Commerce | Cross-Site Request Forgery (CSRF) (CWE-352)EPSS 0.4%CVE-2022-1576WP Maintenance Mode & Coming Soon < 2.4.5 - Subscribed Users Deletion via CSRFEPSS 0.4%CVE-2024-39409MEDIUMAdobe Commerce | Cross-Site Request Forgery (CSRF) (CWE-352)EPSS 0.4%CVE-2020-13674The QuickEdit module does not properly validate access to routes, which could allow cross-site request forgery under some circumstances and EPSS 0.4%CVE-2022-2091Cache Images < 3.2.1 - Image Upload / Import via CSRFEPSS 0.4%CVE-2023-49673HIGHA cross-site request forgery (CSRF) vulnerability in Jenkins NeuVector Vulnerability Scanner Plugin 1.22 and earlier allows attackers to conEPSS 0.4%CVE-2023-50768HIGHA cross-site request forgery (CSRF) vulnerability in Jenkins Nexus Platform Plugin 3.18.0-03 and earlier allows attackers to connect to an aEPSS 0.4%CVE-2022-41232HIGHA cross-site request forgery (CSRF) vulnerability in Jenkins Build-Publisher Plugin 1.22 and earlier allows attackers to replace any config.EPSS 0.4%CVE-2023-50766HIGHA cross-site request forgery (CSRF) vulnerability in Jenkins Nexus Platform Plugin 3.18.0-03 and earlier allows attackers to send an HTTP reEPSS 0.4%