Falhas do tipo CWE-352

5.723 resultados
CVE-2026-1148MEDIUMSourceCodester/Patrick Mvuma Patients Waiting Area Queue Management System cross-site request forgeryEPSS 0.2%CVE-2023-47790HIGHWordPress Pz-LinkCard Plugin <= 2.4.8 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.2%CVE-2024-10045MEDIUMTransients Manager <= 2.0.6 - Cross-Site Request ForgeryEPSS 0.2%CVE-2016-20028MEDIUMZKTeco ZKBioSecurity 3.0 Cross-Site Request Forgery SuperadminEPSS 0.2%CVE-2024-37435MEDIUMWordPress Perfect Portfolio theme <= 1.2.0 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2024-37093MEDIUMWordPress MasterStudy LMS plugin <= 3.2.1 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2024-28948HIGHAdvantech ADAM-5630 Cross-Site Request ForgeryEPSS 0.2%CVE-2024-9649MEDIUMWP ULike <= 4.7.4 - Cross-Site Request Forgery to Statistic DeletionEPSS 0.2%CVE-2025-21528MEDIUMVulnerability in the Primavera P6 Enterprise Project Portfolio Management product of Oracle Construction and Engineering (component: Web AccEPSS 0.2%CVE-2024-9351MEDIUMForminator Forms – Contact Form, Payment Form & Custom Form Builder <= 1.35.1 - Cross-Site Request Forgery to Draft Quiz CreationEPSS 0.2%CVE-2025-13283HIGHChunghwa Telecom|TenderDocTransfer - Arbitrary File Copy and PasteEPSS 0.2%CVE-2025-53095CRITICALSunshine application-wide CSRF in the UI leads to command injection as AdministratorEPSS 0.2%CVE-2024-13684HIGHReset <= 1.6 - Cross-Site Request Forgery to Database ResetEPSS 0.2%CVE-2025-52841HIGHLaundry 2.3.0 - Account Takeover via CSRFEPSS 0.2%CVE-2024-51648HIGHWordPress e-shops plugin 1.0.3 - CSRF to Reflected Cross Site Scripting (XSS) vulnerabilityEPSS 0.2%CVE-2024-51652HIGHWordPress Skip To plugin <= 2.0.0 - CSRF to Stored Cross Site Scripting (XSS) vulnerabilityEPSS 0.2%CVE-2024-51641HIGHWordPress Advanced PDF Generator plugin <= 0.4.0 - CSRF to Stored XSS vulnerabilityEPSS 0.2%CVE-2024-51654HIGHWordPress APK Downloader plugin <= 1.0.0 - CSRF to Stored Cross Site Scripting (XSS) vulnerabilityEPSS 0.2%CVE-2024-2416MEDIUMCross-Site Request Forgery vulnerability in Movistar 4G routerEPSS 0.2%CVE-2024-51655HIGHWordPress Custom Author URL plugin <= 2.0.1 - CSRF to Stored Cross Site Scripting (XSS) vulnerabilityEPSS 0.2%