Fallos del tipo CWE-352
5690 resultadosCVE-2023-32344MEDIUMIBM Cognos Analytics cross-site request forgeryEPSS 0.4%CVE-2020-28191HIGHThe console in Togglz before 2.9.4 allows CSRF.EPSS 0.4%CVE-2021-41273MEDIUMCross-Site Request Forgery allowing sending of test emails and generation of node auto-deployment keysEPSS 0.4%CVE-2024-7226MEDIUMSourceCodester Medicine Tracker System Password Change cross-site request forgeryEPSS 0.4%CVE-2020-36745MEDIUMWP Project Manager <= 2.4.0 - Cross-Site Request Forgery BypassEPSS 0.4%CVE-2023-2228MEDIUMCross-Site Request Forgery (CSRF) in modoboa/modoboaEPSS 0.4%CVE-2020-23363HIGHCross Site Request Forgery (CSRF) vulnerability found in Verytops Verydows all versions that allows an attacker to execute arbitrary code viEPSS 0.4%CVE-2023-25989MEDIUMCross-Site Request Forgery (CSRF) vulnerability in multiple WordPress plugins by MeksEPSS 0.4%CVE-2022-1418—Social Stickers <= 2.2.9 - Stored Cross-Site Scripting via CSRFEPSS 0.4%CVE-2024-25808HIGHCross-site Request Forgery (CSRF) vulnerability in Lychee version 3.1.6, allows remote attackers to execute arbitrary code via the create neEPSS 0.4%CVE-2021-32776MEDIUMNo CSRF form token cleanup on Windows serversEPSS 0.4%CVE-2021-24173—VM Backups <= 1.0 - CSRF to Stored Cross-Site Scripting (XSS)EPSS 0.4%CVE-2017-20020MEDIUMSolare Solar-Log cross-site request forgeryEPSS 0.4%CVE-2023-2474MEDIUMRebuild cross-site request forgeryEPSS 0.4%CVE-2020-23588MEDIUMA vulnerability in OPTILINK OP-XT71000N Hardware Version: V2.2 , Firmware Version: OP_V3.3.1-191028 allows an unauthenticated, remote attackEPSS 0.4%CVE-2021-4333MEDIUMWP Statistics <= 13.1.1 - Cross-Site Request Forgery to Arbitrary Plugin Activation and DeactivationEPSS 0.4%CVE-2022-41500HIGHEyouCMS V1.5.9 was discovered to contain multiple Cross-Site Request Forgery (CSRF) vulnerabilities via the Members Center, Editorial MemberEPSS 0.4%CVE-2022-44849HIGHA Cross-Site Request Forgery (CSRF) in the Administrator List of MetInfo v7.7 allows attackers to arbitrarily add Super Administrator accounEPSS 0.4%CVE-2022-41475HIGHRPCMS v3.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) which allows attackers to arbitrarily add an administrator accounEPSS 0.4%CVE-2024-54408MEDIUMWordPress Youtube Video Grid plugin <= 1.9 - CSRF to Settings Change vulnerabilityEPSS 0.4%