Weaknesses of type CWE-352

5,721 results
CVE-2020-36908MEDIUMSecure Computing SnapGear Management Console SG560 3.1.5 Cross-Site Request Forgery via Admin UsersEPSS 0.2%CVE-2023-23899MEDIUMWordPress Extensions For CF7 Plugin <= 2.0.8 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.2%CVE-2025-43745MEDIUMA CSRF vulnerability in Liferay Portal 7.4.0 through 7.4.3.132, and Liferay DXP 2025.Q2.0 through 2025.Q2.7, 2025.Q1.0 through 2025.Q1.14, 2EPSS 0.2%CVE-2022-41805MEDIUMWordPress Booster for WooCommerce plugin <= 5.6.6 - Cross-Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2022-47148MEDIUMWordPress WooCommerce PDF Invoices & Packing Slips Plugin <= 3.2.5 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.2%CVE-2024-34816MEDIUMWordPress WPCal.io plugin <= 0.9.5.8 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2023-23865MEDIUMWordPress Stripe Payments For WooCommerce by Checkout Plugin <= 1.4.10 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.2%CVE-2024-22155MEDIUMWordPress WooCommerce plugin <= 8.5.2 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2022-45804MEDIUMWordPress Robo Gallery Plugin <= 3.2.9 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.2%CVE-2024-9365MEDIUMCross-Site Request Forgery (CSRF) in polyaxon/polyaxonEPSS 0.2%CVE-2024-20347MEDIUMA vulnerability in Cisco Emergency Responder could allow an unauthenticated, remote attacker to conduct a CSRF attack, which could allow theEPSS 0.2%CVE-2024-56203HIGHWordPress Wayne Audio Player plugin <= 1.0 - CSRF to Privilege Escalation vulnerabilityEPSS 0.2%CVE-2024-36548MEDIUMidccms V1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) via admin/vpsCompany_deal.php?mudi=delEPSS 0.2%CVE-2025-46610HIGHARTEC EMA Mail 6.92 allows CSRF.EPSS 0.2%CVE-2024-47082MEDIUMStrawberry GraphQL Cross-Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2022-41990HIGHWordPress 3D Tag Cloud Plugin <= 3.8 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.2%CVE-2024-24929MEDIUMWordPress WP Contact Form Plugin <= 1.6 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.2%CVE-2024-36668MEDIUMidccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component admin/type_deal.php?mudi=delEPSS 0.2%CVE-2023-23750MEDIUM[20230101] - Core - CSRF within post-installation messagesEPSS 0.2%CVE-2022-48320MEDIUMCSRF in add-visual endpointEPSS 0.2%