Falhas do tipo CWE-352

5.692 resultados
CVE-2024-7106MEDIUMSpina CMS media_folders cross-site request forgeryEPSS 0.4%CVE-2020-36740MEDIUMRadio Buttons for Taxonomies <= 2.0.5 - Cross-Site Request Forgery BypassEPSS 0.4%CVE-2022-27847MEDIUMWordPress Yoo Slider plugin <= 2.0.0 - Cross-Site Request Forgery (CSRF) vulnerability leading to Template ImportEPSS 0.4%CVE-2024-3147MEDIUMDedeCMS makehtml_map.php cross-site request forgeryEPSS 0.4%CVE-2024-7662MEDIUMSourceCodester Car Driving School Management System manag_package.php save_package cross-site request forgeryEPSS 0.4%CVE-2022-38144HIGHWordPress wpForo Forum plugin <= 2.0.5 - Cross-Site Request Forgery (CSRF) vulnerabilityEPSS 0.4%CVE-2020-36752MEDIUMComing Soon & Maintenance Mode Page <= 1.57 - Cross-Site Request Forgery BypassEPSS 0.4%CVE-2021-3729MEDIUMCross-Site Request Forgery (CSRF) in firefly-iii/firefly-iiiEPSS 0.4%CVE-2025-47204MEDIUMAn issue was discovered in post.php in bootstrap-multiselect (aka Bootstrap Multiselect) 1.1.2. A PHP script in the source code echoes arbitEPSS 0.4%CVE-2023-20856HIGHVMware vRealize Operations (vROps) contains a CSRF bypass vulnerability. A malicious user could execute actions on the vROps platform on behEPSS 0.4%CVE-2023-35030HIGHCross-site request forgery (CSRF) vulnerability in the Layout module's SEO configuration in Liferay Portal 7.4.3.70 through 7.4.3.76, and LiEPSS 0.4%CVE-2017-20088MEDIUMAtahualpa Theme cross-site request forgeryEPSS 0.4%CVE-2017-20091MEDIUMFile Manager Plugin cross-site request forgeryEPSS 0.4%CVE-2023-2517MEDIUMMetform Elementor Contact Form Builder <= 3.3.2 - Cross-Site Request Forgery via permalink_setupEPSS 0.4%CVE-2020-18131HIGHCross Site Request Forgery (CSRF) vulnerability in Bluethrust Clan Scripts v4 allows attackers to escilate privledges to an arbitrary accounEPSS 0.4%CVE-2022-1577Database Backup for WordPress < 2.5.2 - Arbitrary Schedule Settings Update via CSRFEPSS 0.4%CVE-2022-29427MEDIUMWordPress Disable Right Click For WP plugin <= 1.1.6 - Cross-Site Request Forgery (CSRF) vulnerabilityEPSS 0.4%CVE-2022-36379HIGHWordPress ЮKassa для WooCommerce plugin <= 2.3.0 - Cross-Site Request Forgery (CSRF) leading to plugin settings updateEPSS 0.4%CVE-2022-41685MEDIUMMultiple Cross-Site Request Forgery (CSRF) vulnerabilities in Integration for Szamlazz.hu & WooCommerce and Csomagpontok és szállítási címkék WooCommerce hez pluginsEPSS 0.4%CVE-2022-41489HIGHWAYOS LQ_09 22.03.17V was discovered to contain a Cross-Site Request Forgery (CSRF) which allows attackers to send crafted requests to the sEPSS 0.4%