Weaknesses of type CWE-352
5,723 resultsCVE-2023-35091MEDIUMWordPress WooCommerce Stock Manager Plugin <= 2.10.0 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.2%CVE-2022-46810MEDIUMWordPress Thank You Page Customizer for WooCommerce – Increase Your Sales Plugin <= 1.0.13 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.2%CVE-2022-47144MEDIUMWordPress Mediamatic – Media Library Folders Plugin <= 2.8.1 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.2%CVE-2024-35012MEDIUMidccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /admin/infoType_deal.php?mudi=add&nohrefStr=cloEPSS 0.2%CVE-2021-47860HIGHGetSimple CMS Custom JS 0.1 - CSRF to XSS to RCEEPSS 0.2%CVE-2024-31998HIGHCSRF security issue on CSV import in Combodo iTopEPSS 0.2%CVE-2024-42476MEDIUMoauth CSRF vulnerabilityEPSS 0.2%CVE-2024-35553HIGHidccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /admin/infoMove_deal.php?mudi=add&nohrefStr=cloEPSS 0.2%CVE-2024-36547MEDIUMidccms V1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component admin/vpsClass_deal.php?mudi=addEPSS 0.2%CVE-2024-2741HIGHCross-Site Request Forgery in Planet IGS-4215-16T2SEPSS 0.2%CVE-2024-7688MEDIUMAZIndex <= 0.8.1 - Index Deletion via CSRFEPSS 0.2%CVE-2024-7817MEDIUMMisiek Photo Album <= 1.4.3 - Album Deletion via CSRFEPSS 0.2%CVE-2020-36886MEDIUMSpinetiX Fusion Digital Signage 3.4.8 Cross-Site Request Forgery via User CreationEPSS 0.2%CVE-2024-36550MEDIUMidccms V1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) via /admin/vpsCompany_deal.php?mudi=add&nohrefStr=closeEPSS 0.2%CVE-2026-6451MEDIUMCMS für Motorrad Werkstätten <= 1.0.0 - Cross-Site Request ForgeryEPSS 0.2%CVE-2024-27559MEDIUMStupid Simple CMS v1.2.4 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /save_settings.phpEPSS 0.2%CVE-2024-53707MEDIUMWordPress Ahmeti Wp Güzel Sözler plugin <= 4.0 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2024-54321MEDIUMWordPress Hive Support plugin <= 1.1.2 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2022-43470HIGHCross-site request forgery (CSRF) vulnerability in +F FS040U software versions v2.3.4 and earlier, +F FS020W software versions v4.0.0 and eaEPSS 0.2%CVE-2024-0516MEDIUMRoyal Elementor Addons and Templates <= 1.3.87 - Missing Authorization via wpr_update_form_action_metaEPSS 0.2%