Fallos del tipo CWE-352

5745 resultados
CVE-2025-63040MEDIUMWordPress Post Snippets plugin <= 4.0.11 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-68082MEDIUMWordPress Semrush Content Toolkit plugin <= 1.1.32 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-13296MEDIUMCSRF in Tekrom Technology's T-Soft E-CommerceEPSS 0.1%CVE-2025-68083MEDIUMWordPress Meks Quick Plugin Disabler plugin <= 1.0 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-67646LOWTableProgressTracking's missing CSRF protection allows unauthorized state changesEPSS 0.1%CVE-2025-67534HIGHWordPress Rencontre plugin <= 3.13.7 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2026-3211MEDIUMTheme Negotiation by Rules - Moderately critical - Cross-site request forgery - SA-CONTRIB-2026-012EPSS 0.1%CVE-2025-53344MEDIUMWordPress Thim Core Plugin <= 2.3.3 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2026-1128MEDIUMWP eCommerce <= 3.15.1 - Coupon Deletion via CSRFEPSS 0.1%CVE-2026-25014MEDIUMWordPress Enter Addons plugin <= 2.3.2 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-53444MEDIUMWordPress Userpro plugin < 5.1.11 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-59130MEDIUMWordPress Appointify plugin <= 1.0.8 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2026-57657MEDIUMWordPress Gmail SMTP plugin <= 1.2.3.19 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2026-39635MEDIUMWordPress Grand Magazine theme <= 3.5.5 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-62133MEDIUMWordPress FormFacade plugin <= 1.4.1 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2026-27090MEDIUMWordPress Kenta Companion plugin <= 1.3.3 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-67622HIGHWordPress Evergreen Post Tweeter plugin <= 1.8.9 - Cross Site Request Forgery (CSRF) to Stored XSS vulnerabilityEPSS 0.1%CVE-2026-32456MEDIUMWordPress Admin Menu Editor plugin <= 1.14.1 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2026-24384MEDIUMWordPress Merge + Minify + Refresh plugin <= 2.14 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2026-24365MEDIUMWordPress Stock Manager for WooCommerce plugin < 3.6.0 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%