Falhas do tipo CWE-352

5.740 resultados
CVE-2025-58576MEDIUMCross-site request forgery vulnerability exists in GroupSession Free edition prior to ver5.3.0, GroupSession byCloud prior to ver5.3.3, and EPSS 0.1%CVE-2025-53305HIGHWordPress WP Forum Server plugin <= 1.8.2 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2025-53310HIGHWordPress HidePost plugin <= 2.3.8 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2025-53315HIGHWordPress Relocate Upload plugin <= 0.24.1 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2023-52212MEDIUMWordPress WP Job Manager plugin <= 2.0.0 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2026-49001MEDIUMCross-Site Request Forgery (CSRF) vulnerability in ZTE ZXUniPOS NDS-LTE productEPSS 0.1%CVE-2025-53312HIGHWordPress OnionBuzz plugin <= 1.0.7 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2026-48925MEDIUMA cross-site request forgery (CSRF) vulnerability in Jenkins GitHub Integration Plugin 0.7.3 and earlier allows attackers to attackers to trEPSS 0.1%CVE-2026-4393MEDIUMAutomated Logout - Moderately critical - Cross-site request forgery - SA-CONTRIB-2026-030EPSS 0.1%CVE-2025-68584MEDIUMWordPress Vimeotheque plugin <= 2.3.5.2 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-53317HIGHWordPress WPShapere Lite plugin <= 1.4.1 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2025-60172HIGHWordPress Flytedesk Digital Plugin <= 20181101 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2025-12827MEDIUMTop Friends <= 0.3 - Cross-Site Request Forgery to Settings UpdateEPSS 0.1%CVE-2025-13142MEDIUMCustom Post Type <= 1.0 - Cross-Site Request Forgery to Custom Post Type DeletionEPSS 0.1%CVE-2025-67471MEDIUMWordPress Quick Contact Form plugin <= 8.2.5 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-60169HIGHWordPress W3SCloud Contact Form 7 to Zoho CRM plugin <= 3.2 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2026-24432MEDIUMTenda W30E V2 Missing CSRF Protections for Administrative ActionsEPSS 0.1%CVE-2025-58861HIGHWordPress Quick Event Calendar Plugin <= 1.4.9 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2025-60173HIGHWordPress GST for WooCommerce Plugin <= 2.0 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2025-12173MEDIUMWP Admin Microblog <= 3.1.1 - Cross-Site Request Forgery to Message CreationEPSS 0.1%