Falhas do tipo CWE-352
5.733 resultadosCVE-2025-9633MEDIUMLH Signing <= 2.83 - Cross-Site Request ForgeryEPSS 0.2%CVE-2025-9888MEDIUMMaspik <= 2.5.6 - Cross-Site Request ForgeryEPSS 0.2%CVE-2026-4133MEDIUMTextP2P Texting Widget <= 1.7 - Cross-Site Request Forgery to Settings UpdateEPSS 0.2%CVE-2026-2626HIGHDivi Booster < 5.0.2 - Unauthenticated PHP Object InjectionEPSS 0.2%CVE-2026-4984HIGHBotpress - Credential Disclosure via Twilio Webhook HandlerEPSS 0.2%CVE-2024-52424HIGHWordPress wp-login customizer plugin <= 1.0 - Cross Site Scripting (XSS) vulnerabilityEPSS 0.2%CVE-2025-9629MEDIUMUSS Upyun <= 1.5.0 - Cross-Site Request ForgeryEPSS 0.2%CVE-2024-49335HIGHWordPress GoogleDrive folder list plugin <= 2.2.2 - CSRF to Stored Cross Site Scripting (XSS) vulnerabilityEPSS 0.2%CVE-2026-40326HIGHMasa CMS CSRF in site bundle creation allows unauthorized site data exportEPSS 0.2%CVE-2024-49220HIGHWordPress Cookie Scanner plugin <= 1.1 - CSRF to Stored XSS vulnerabilityEPSS 0.2%CVE-2025-25103MEDIUMWordPress Indeed API Plugin <= 0.5 - CSRF to Settings Change vulnerabilityEPSS 0.2%CVE-2020-37145MEDIUMHRSALE 1.1.8 - Cross-Site Request Forgery (Add Admin)EPSS 0.2%CVE-2025-23113LOWAn issue was discovered in REDCap 14.9.6. It has an action=myprojects&logout=1 CSRF issue in the alert-title while performing an upload of aEPSS 0.2%CVE-2026-2023MEDIUMWP Plugin Info Card <= 6.2.0 - Cross-Site Request Forgery to Arbitrary Custom Plugin Entry CreationEPSS 0.2%CVE-2025-9626MEDIUMPage Blocks <= 1.1.0 - Cross-Site Request ForgeryEPSS 0.2%CVE-2025-24540MEDIUMWordPress Website Builder by SeedProd plugin <= 6.18.9 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2024-37452MEDIUMWordPress Schema Lite theme <= 1.2.2 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2026-46955HIGHVulnerability in the Oracle Human Resources product of Oracle E-Business Suite (component: Person). Supported versions that are affected arEPSS 0.2%CVE-2025-31482MEDIUMFreshRSS vulnerable to DoS by malicious feed entry loading logout URLEPSS 0.2%CVE-2024-49237HIGHWordPress Ahmeti Wp Timeline plugin <= 5.1 - CSRF to Stored XSS vulnerabilityEPSS 0.2%