Falhas do tipo CWE-352
5.738 resultadosCVE-2026-8942MEDIUMMetaMagic SEO Plugin <= 1.6 - Cross-Site Request Forgery to Plugin Settings Update via Settings PageEPSS 0.1%CVE-2025-10312MEDIUMTheme Importer <= 1.0 - Cross-Site Request ForgeryEPSS 0.1%CVE-2025-10301MEDIUMFunKItools <= 1.0.2 - Cross-Site Request Forgery to Settings UpdateEPSS 0.1%CVE-2025-9887MEDIUMCustom Login And Signup Widget <= 1.0 - Cross-Site Request ForgeryEPSS 0.1%CVE-2025-64760MEDIUMTuleap has missing CSRF protections in its tracker trigger management systemEPSS 0.1%CVE-2026-8902MEDIUMAJAX Report Comments <= 2.0.4 - Cross-Site Request Forgery to Settings UpdateEPSS 0.1%CVE-2025-54020MEDIUMWordPress AntiSpam for Contact Form 7 plugin <= 0.6.3 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2026-57747MEDIUMWordPress Booked plugin <= 3.0.0 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-6041MEDIUMyContributors <= 0.5 - Cross-Site Request Forgery to Stored Cross-Site ScriptingEPSS 0.1%CVE-2026-1983MEDIUMSEATT: Simple Event Attendance <= 1.5.0 - Cross-Site Request Forgery to Arbitrary Event DeletionEPSS 0.1%CVE-2025-9897MEDIUMAP Background <= 3.8.2 - Cross-Site Request ForgeryEPSS 0.1%CVE-2025-62101MEDIUMWordPress Pardakht Delkhah plugin <= 3.0.0 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2026-57723HIGHWordPress VikBooking Hotel Booking Engine & PMS plugin <= 1.8.12 - CSRF to Arbitrary File Deletion vulnerabilityEPSS 0.1%CVE-2025-48328MEDIUMWordPress Real Time Validation for Gravity Forms plugin <= 1.7.0 - Cross Site Request Forgery (CSRF) to Settings Change vulnerabilityEPSS 0.1%CVE-2025-10376MEDIUMCourse Redirects for Learndash Plugin <= 0.4 - Cross-Site Request ForgeryEPSS 0.1%CVE-2025-54174MEDIUMCross-Site Request Forgery in QuickCMSEPSS 0.1%CVE-2025-10302MEDIUMUltimate Viral Quiz <= 1.0 - Cross-Site Request Forgery to Settings UpdateEPSS 0.1%CVE-2025-11976MEDIUMFuseWP – WordPress User Sync to Email List & Marketing Automation (Mailchimp, Constant Contact, ActiveCampaign etc.) <= 1.1.23.0 - Cross-Site Request Forgery to Sync Rule CreationEPSS 0.1%CVE-2025-49077MEDIUMWordPress Dynamic Pricing and Discount Rules plugin <= 2.2.9 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-62123MEDIUMWordPress WP Gmail SMTP plugin <= 1.0.7 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%