Falhas do tipo CWE-352

5.740 resultados
CVE-2025-60171HIGHWordPress Conditional Cart Messages for WooCommerce – YourPlugins.com Plugin <= 1.2.10 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2025-48104HIGHWordPress Floating Window Music Player plugin <= 3.4.2 - Cross Site Request Forgery (CSRF) to Stored XSS vulnerabilityEPSS 0.1%CVE-2025-12173MEDIUMWP Admin Microblog <= 3.1.1 - Cross-Site Request Forgery to Message CreationEPSS 0.1%CVE-2025-58860HIGHWordPress Enable Latex Plugin <= 1.2.16 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2025-13142MEDIUMCustom Post Type <= 1.0 - Cross-Site Request Forgery to Custom Post Type DeletionEPSS 0.1%CVE-2026-24432MEDIUMTenda W30E V2 Missing CSRF Protections for Administrative ActionsEPSS 0.1%CVE-2025-32245HIGHWordPress Featured Posts Scroll plugin <= 1.25 - CSRF to Stored Cross Site Scripting (XSS) vulnerabilityEPSS 0.1%CVE-2025-64240MEDIUMWordPress Freshchat plugin <= 2.3.4 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-14907MEDIUMModerate Selected Posts <= 1.4 - Cross-Site Request Forgery to Plugin Settings UpdateEPSS 0.1%CVE-2025-67625MEDIUMWordPress Trade Runner plugin <= 3.14 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-59009MEDIUMWordPress Listify theme <= 3.2.5 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2026-25411MEDIUMWordPress Revision Manager TMC plugin <= 2.8.22 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2026-32343MEDIUMWordPress Easy Table of Contents plugin <= 2.0.80 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-64239MEDIUMWordPress RTL Tester plugin <= 1.2 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2026-49433LOWDeepAI api.deepai.org/change_user_email CSRFEPSS 0.1%CVE-2025-15635MEDIUMWordPress Smart Online Order for Clover plugin <= 1.6.0 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2026-24962MEDIUMWordPress Sigmize plugin <= 0.0.9 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2026-57637MEDIUMWordPress Abandoned Cart Lite for WooCommerce plugin <= 6.8.0 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2026-32344MEDIUMWordPress Corpiva theme <= 1.0.96 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2026-24942MEDIUMWordPress WpEvently plugin <= 5.1.1 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%