Falhas do tipo CWE-352

5.724 resultados
CVE-2024-33678MEDIUMWordPress ClickCease Click Fraud Protection plugin <= 3.2.7 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2024-54411HIGHWordPress WP Controller plugin <= 3.2.0 - CSRF to Stored Cross-Site Scripting vulnerabilityEPSS 0.2%CVE-2024-54421HIGHWordPress Floating Video Player plugin <= 1.0 - CSRF to Stored XSS vulnerabilityEPSS 0.2%CVE-2025-24546MEDIUMWordPress Ultimate Coming Soon & Maintenance plugin <= 1.0.9 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2024-54416HIGHWordPress Wp Login with Ajax plugin <= 0.6 - CSRF to Stored Cross-Site Scripting vulnerabilityEPSS 0.2%CVE-2024-54414HIGHWordPress Geoportail Shortcode plugin <= 2.4.4 - CSRF to Stored Cross-Site Scripting vulnerabilityEPSS 0.2%CVE-2024-54427HIGHWordPress Category of Posts plugin <= 1.0 - CSRF to Stored XSS vulnerabilityEPSS 0.2%CVE-2024-54428HIGHWordPress Add image to Post plugin <= 0.6 - CSRF to Stored XSS vulnerabilityEPSS 0.2%CVE-2023-51525MEDIUMWordPress WP Simple Booking Calendar plugin <= 2.0.8.4 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2024-4543MEDIUMSnippet Shortcodes <= 4.1.4 - Cross-Site Request ForgeryEPSS 0.2%CVE-2024-54439HIGHWordPress Amazon Product Price plugin <= 1.1 - CSRF to Stored XSS vulnerabilityEPSS 0.2%CVE-2024-54429HIGHWordPress Aphorismus plugin <= 1.2.0 - CSRF to Stored XSS vulnerabilityEPSS 0.2%CVE-2024-54423HIGHWordPress Social Media Sharing plugin <= 1.1 - CSRF to Stored XSS vulnerabilityEPSS 0.2%CVE-2024-54426HIGHWordPress LeaderBoard Plugin plugin <= 1.2.4 - CSRF to Stored Cross-Site Scripting vulnerabilityEPSS 0.2%CVE-2023-7273MEDIUMCross Site Request Forgery in Kiteworks OwnCloudEPSS 0.2%CVE-2024-54332HIGHWordPress WP Currency Exchange Rates plugin <= 1.2.0 - CSRF to Stored XSS vulnerabilityEPSS 0.2%CVE-2025-24715MEDIUMWordPress Counter Box Plugin <= 2.0.5 - Cross Site Request Forgery (CSRF) to Settings Change vulnerabilityEPSS 0.2%CVE-2024-54420HIGHWordPress Metrika plugin <= 1.2 - CSRF to Stored XSS vulnerabilityEPSS 0.2%CVE-2024-54412HIGHWordPress ECT Product Carousel plugin <= 1.9 - CSRF to Stored Cross-Site Scripting vulnerabilityEPSS 0.2%CVE-2024-54353HIGHWordPress Hack-Info plugin <= 3.17 - CSRF to Stored Cross Site Scripting (XSS) vulnerabilityEPSS 0.2%