Fallos del tipo CWE-352

5712 resultados
CVE-2024-42617HIGHPligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/admin_config.php?action=save&var_id=EPSS 0.3%CVE-2024-42618HIGHPligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /module.php?module=karmaEPSS 0.3%CVE-2024-42610HIGHPligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/admin_backup.php?dobackup=filesEPSS 0.3%CVE-2024-42630HIGHFrogCMS v0.9.5 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/?/plugin/file_manager/create_file.EPSS 0.3%CVE-2024-42611HIGHPligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) via admin/admin_page.php?link_id=1&mode=deleteEPSS 0.3%CVE-2024-42627HIGHFrogCMS v0.9.5 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/?/snippet/delete/3.EPSS 0.3%CVE-2024-42616HIGHPligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/admin_widgets.php?action=remove&widgEPSS 0.3%CVE-2025-32354HIGHIn Zimbra Collaboration (ZCS) 9.0 through 10.1, a Cross-Site Request Forgery (CSRF) vulnerability exists in the GraphQL endpoint (/service/eEPSS 0.3%CVE-2024-42623HIGHFrogCMS v0.9.5 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/?/layout/delete/1EPSS 0.3%CVE-2024-10711HIGHWooCommerce Report <= 1.5.1 - Cross-Site Request Forgery to Arbitrary Options UpdateEPSS 0.3%CVE-2023-46204MEDIUMWordPress Duplicate Theme Plugin <= 0.1.6 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2024-42624HIGHFrogCMS v0.9.5 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/?/page/delete/10.EPSS 0.3%CVE-2024-46086HIGHFrogCMS V0.9.5 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/?/plugin/file_manager/delete/123EPSS 0.3%CVE-2024-42613HIGHPligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/admin_widgets.php?action=install&widEPSS 0.3%CVE-2024-25932MEDIUMWordPress Change Table Prefix plugin <= 2.0 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.3%CVE-2024-42626HIGHFrogCMS v0.9.5 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/?/snippet/add.EPSS 0.3%CVE-2024-42621HIGHPligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/admin_editor.phpEPSS 0.3%CVE-2024-42608HIGHPligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/submit_page.php.EPSS 0.3%CVE-2024-42607HIGHPligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/admin_backup.php?dobackup=databaseEPSS 0.3%CVE-2025-65027HIGHRomM Chained XSS and CSRF Vulnerabilities Enable Admin Account TakeoverEPSS 0.3%