Falhas do tipo CWE-352

5.733 resultados
CVE-2025-12456MEDIUMCentangle Team Showcase <= 1.0.0 - Cross-Site Request Forgery To Plugin's Settings Modification And Stored Cross-Site ScriptingEPSS 0.1%CVE-2025-23996MEDIUMWordPress AnyRoad plugin <= 1.3.2 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2024-13339MEDIUMDeBounce Email Validator <= 5.8.0 - Cross-Site Request Forgery to Stored Cross-Site ScriptingEPSS 0.1%CVE-2025-9883MEDIUMBrowser Sniff <= 2.3 - Cross-Site Request Forgery to Stored Cross-Site ScriptingEPSS 0.1%CVE-2025-59480MEDIUMInadequate validation of SSO redirect credentials permits credential theftEPSS 0.1%CVE-2025-12586MEDIUMConditional Maintenance Mode for WordPress <= 1.0.0 - Cross-Site Request ForgeryEPSS 0.1%CVE-2025-25160HIGHWordPress Style Tweaker plugin <= 0.11 - CSRF to Stored XSS vulnerabilityEPSS 0.1%CVE-2025-25126HIGHWordPress ZMSEO plugin <= 1.14.1 - CSRF to Stored XSS vulnerabilityEPSS 0.1%CVE-2025-7688MEDIUMAdd User Meta <= 1.0.1 - Cross-Site Request Forgery to Stored Cross-Site ScriptingEPSS 0.1%CVE-2025-30965MEDIUMWordPress WPJobBoard plugin < 5.11.1 - Multiple Cross Site Request Forgery (CSRF) vulnerabilities vulnerabilityEPSS 0.1%CVE-2024-13338MEDIUMWebcraftic Clearfy – WordPress optimization plugin <= 2.3.1 - Cross-Site Request Forgery to Clear CacheEPSS 0.1%CVE-2024-45983MEDIUMA Cross-Site Request Forgery (CSRF) vulnerability exists in kishan0725's Hospital Management System version 6.3.5. The vulnerability allows EPSS 0.1%CVE-2025-9620MEDIUMSeo Monster <= 3.3.3 - Cross-Site Request Forgery to Stored Cross-Site ScriptingEPSS 0.1%CVE-2025-24549HIGHWordPress Post Meta plugin <= 1.0.9 - Reflected Cross Site Scripting (XSS) vulnerabilityEPSS 0.1%CVE-2025-9881MEDIUMUltimate Blogroll <= 2.5.2 - Cross-Site Request Forgery to Stored Cross-Site ScriptingEPSS 0.1%CVE-2025-27336MEDIUMWordPress Just Variables Plugin <= 1.2.3 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-9882MEDIUMosTicket WP Bridge <= 1.9.2 - Cross-Site Request Forgery to Stored Cross-Site ScriptingEPSS 0.1%CVE-2025-47470MEDIUMWordPress GPT3 AI Content Writer plugin <= 1.9.14 - Cross Site Request Forgery (CSRF) to Prompt Generation vulnerabilityEPSS 0.1%CVE-2025-30629MEDIUMWordPress Bitly URL Shortener plugin <= 1.4.1 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-53261MEDIUMWordPress WP YouTube Live plugin <= 1.10.0 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%