Fallos del tipo CWE-352
5714 resultadosCVE-2023-48769MEDIUMWordPress Chat Bubble Plugin <= 2.3 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2024-11416MEDIUMWIP Incoming Lite <= 1.1.1 - Cross-Site Request Forgery to Stored Cross-Site ScriptingEPSS 0.3%CVE-2024-13852HIGHOption Editor <= 1.0 - Cross-Site Request Forgery to Arbitrary Options UpdateEPSS 0.3%CVE-2025-26748HIGHWordPress Arkhe theme <= 3.12.0 - CSRF to Local File Inclusion vulnerabilityEPSS 0.3%CVE-2024-1504MEDIUMSecuPress Free — WordPress Security <= 2.2.5.1 - Cross-Site Request Forgery to Banned IP AddressEPSS 0.3%CVE-2023-47819MEDIUMWordPress Easy Call Now by ThikShare Plugin <= 1.1.0 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2022-44387HIGHEyouCMS V1.5.9-UTF8-SP1 was discovered to contain a Cross-Site Request Forgery (CSRF) via the Basic Information component under the Edit MemEPSS 0.3%CVE-2023-47686MEDIUMWordPress Arigato Autoresponder and Newsletter Plugin <= 2.7.2.2 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2023-49840MEDIUMWordPress Multi Currency For WooCommerce Plugin <= 1.5.5 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2023-46638MEDIUMWordPress WCP OpenWeather Plugin <= 2.5.0 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2023-31077MEDIUMWordPress Export WP Page to Static HTML/CSS Plugin <= 2.1.9 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2026-49871LOWApache APISIX: cas-auth login CSRF / session injection issueEPSS 0.3%CVE-2023-47645MEDIUMWordPress RegistrationMagic Plugin <= 5.2.2.6 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2023-46625MEDIUMWordPress Autolinks Manager Plugin <= 1.10.04 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2023-49838MEDIUMCross-Site Request Forgery (CSRF) vulnerability in multiple themes by KlbThemeEPSS 0.3%CVE-2023-47775MEDIUMWordPress wpDiscuz Plugin <= 7.6.11 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2022-1626—Sharebar <= 1.4.1 - Arbitrary Settings Update to Stored XSS via CSRFEPSS 0.3%CVE-2024-5712HIGHCSRF Vulnerability in stitionai/devikaEPSS 0.3%CVE-2023-47791MEDIUMWordPress Leadster Plugin <= 1.1.2 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2024-9598HIGHAMP for WP – Accelerated Mobile Pages <= 1.0.99.1 - Cross-Site Request Forgery to Privilege EscalationEPSS 0.3%