Falhas do tipo CWE-352

5.721 resultados
CVE-2024-32092MEDIUMWordPress Kimili Flash Embed plugin <= 2.5.3 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2024-30521MEDIUMWordPress Landingi Landing Pages plugin <= 3.1.1 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2024-32103MEDIUMWordPress Siteimprove plugin <= 2.0.6 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2024-32093MEDIUMWordPress Novelist plugin <= 1.2.2 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2024-32085MEDIUMWordPress Citadela Listing plugin < 5.20.0 - Cross-Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2024-32097MEDIUMWordPress GEO my WordPress plugin <= 4.1 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2024-32446MEDIUMWordPress Wallet System for WooCommerce plugin <= 2.5.9 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2023-1472MEDIUMRapidLoad Power-Up for Autoptimize <= 1.7.1 - Cross-Site Request ForgeryEPSS 0.2%CVE-2023-39446HIGHSocomec MOD3GP-SY-120K Cross-Site Request ForgeryEPSS 0.2%CVE-2024-31941MEDIUMWordPress CP Media Player plugin <= 1.1.3 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2024-32096MEDIUMWordPress WP Synchro plugin <= 1.11.2 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2023-38512MEDIUMWordPress WpStream plugin <= 4.5.4 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2016-20034HIGHWowza Streaming Engine 4.5.0 Privilege Escalation via user editEPSS 0.2%CVE-2024-32452MEDIUMWordPress Shopping Cart & eCommerce Store plugin <= 5.5.19 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2024-42580MEDIUMA Cross-Site Request Forgery (CSRF) in the component edit_group.php of Warehouse Inventory System v2.0 allows attackers to escalate privilegEPSS 0.2%CVE-2023-45645MEDIUMWordPress WP Open Street Map Plugin <= 1.25 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.2%CVE-2023-37996MEDIUMWordPress GTmetrix for WordPress Plugin <= 0.4.7 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.2%CVE-2023-38381MEDIUMWordPress WP-FlyBox Plugin <= 6.46 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.2%CVE-2023-40202MEDIUMWordPress WP HTML Mail Plugin <= 3.4.1 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.2%CVE-2024-0513MEDIUMRoyal Elementor Addons and Templates <= 1.3.87 - Cross-Site Request Forgery via remove_from_wishlistEPSS 0.2%