Falhas do tipo CWE-352

5.711 resultados
CVE-2024-42604HIGHPligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/admin_group.php?mode=delete&group_idEPSS 0.3%CVE-2024-42610HIGHPligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/admin_backup.php?dobackup=filesEPSS 0.3%CVE-2024-42621HIGHPligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/admin_editor.phpEPSS 0.3%CVE-2024-42630HIGHFrogCMS v0.9.5 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/?/plugin/file_manager/create_file.EPSS 0.3%CVE-2024-10711HIGHWooCommerce Report <= 1.5.1 - Cross-Site Request Forgery to Arbitrary Options UpdateEPSS 0.3%CVE-2025-32354HIGHIn Zimbra Collaboration (ZCS) 9.0 through 10.1, a Cross-Site Request Forgery (CSRF) vulnerability exists in the GraphQL endpoint (/service/eEPSS 0.3%CVE-2024-42616HIGHPligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/admin_widgets.php?action=remove&widgEPSS 0.3%CVE-2024-42613HIGHPligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/admin_widgets.php?action=install&widEPSS 0.3%CVE-2024-42611HIGHPligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) via admin/admin_page.php?link_id=1&mode=deleteEPSS 0.3%CVE-2024-42624HIGHFrogCMS v0.9.5 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/?/page/delete/10.EPSS 0.3%CVE-2024-42623HIGHFrogCMS v0.9.5 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/?/layout/delete/1EPSS 0.3%CVE-2024-42626HIGHFrogCMS v0.9.5 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/?/snippet/add.EPSS 0.3%CVE-2023-46204MEDIUMWordPress Duplicate Theme Plugin <= 0.1.6 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2024-42607HIGHPligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/admin_backup.php?dobackup=databaseEPSS 0.3%CVE-2024-25932MEDIUMWordPress Change Table Prefix plugin <= 2.0 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.3%CVE-2024-42608HIGHPligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/submit_page.php.EPSS 0.3%CVE-2024-42627HIGHFrogCMS v0.9.5 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/?/snippet/delete/3.EPSS 0.3%CVE-2024-46086HIGHFrogCMS V0.9.5 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/?/plugin/file_manager/delete/123EPSS 0.3%CVE-2022-41927HIGHXWiki Platform vulnerable to Cross-Site Request Forgery (CSRF) allowing to delete or rename tagsEPSS 0.3%CVE-2024-11118MEDIUM404 Error Monitor <= 1.1 - Cross-Site Request Forgery to Plugin Settings Update via updatePluginSettings FunctionEPSS 0.3%