Falhas do tipo CWE-352

5.720 resultados
CVE-2024-4312MEDIUMSoccer Engine – Soccer Plugin for WordPress <= 1.12 - Cross-Site Request ForgeryEPSS 0.2%CVE-2024-4463MEDIUMSquelch Tabs and Accordions Shortcodes <= 0.4.7 - Cross-Site Request ForgeryEPSS 0.2%CVE-2022-1607MEDIUMCross Site Scripting vulnerability in NE843 Pulsar Plus ControllerEPSS 0.2%CVE-2024-45270MEDIUMWordPress plugin "Carousel Slider" provided by Sayful Islam contains a cross-site request forgery vulnerability on Hero image selection featEPSS 0.2%CVE-2024-1954MEDIUMOliver POS – A WooCommerce Point of Sale (POS) <= 2.4.1.8 - Cross-Site Request ForgeryEPSS 0.2%CVE-2025-23765MEDIUMWordPress W3SPEEDSTER plugin <= 7.33 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2024-2110MEDIUMEvents Manager <= 6.4.7.1 - Cross-Site Request ForgeryEPSS 0.2%CVE-2024-7850MEDIUMBP Profile Search <= 5.7.5 - Cross-Site Request Forgery to Reflected Cross-Site ScriptingEPSS 0.2%CVE-2024-11444MEDIUMCLUEVO LMS, E-Learning Platform <= 1.13.2 - Cross-Site Request Forgery to Module DeletionEPSS 0.2%CVE-2025-23875HIGHWordPress Better Protected Pages plugin <= 1.0 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2024-49617HIGHWordPress Back Link Tracker plugin <= 1.0.0 - CSRF to SQL Injection vulnerabilityEPSS 0.2%CVE-2024-4082MEDIUMJoli FAQ SEO – WordPress FAQ Plugin <= 1.3.2 - Cross-Site Request ForgeryEPSS 0.2%CVE-2024-4103MEDIUMADFO – Custom data in admin dashboard <= 1.9.0 - Cross-Site Request ForgeryEPSS 0.2%CVE-2024-4314MEDIUMhostel <= 1.1.5.3 - Cross-Site Request ForgeryEPSS 0.2%CVE-2022-46805MEDIUMWordPress Conditional Payments for WooCommerce Plugin <= 2.3.1 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.2%CVE-2023-2285MEDIUMWP Activity Log Premium <= 4.5.0 - Cross-Site Request Forgery via ajax_switch_dbEPSS 0.2%CVE-2024-49615HIGHWordPress SafetyForms plugin <= 1.0.0 - CSRF to SQL Injection vulnerabilityEPSS 0.2%CVE-2023-45655MEDIUMWordPress PixFields Plugin <= 0.7.0 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.2%CVE-2023-46212MEDIUMWordPress WP EXtra Plugin <= 6.2 is vulnerable to Broken Access ControlEPSS 0.2%CVE-2023-40607MEDIUMWordPress CLUEVO LMS, E-Learning Platform Plugin <= 1.10.0 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.2%