Weaknesses of type CWE-352

5,723 results
CVE-2023-52120MEDIUMWordPress NEX-Forms – Ultimate Form Builder Plugin <= 8.5.2 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.2%CVE-2023-44470MEDIUMWordPress Kv TinyMCE Editor Add Fonts Plugin <= 1.1 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.2%CVE-2022-46857MEDIUMWordPress SiteAlert (Formerly WP Health) Plugin <= 1.9.7 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.2%CVE-2023-44473MEDIUMWordPress Table of Contents Plus Plugin <= 2302 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.2%CVE-2023-23719MEDIUMWordPress Premmerce Plugin <= 1.3.17 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.2%CVE-2023-50878MEDIUMWordPress MStore API Plugin <= 4.10.1 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.2%CVE-2023-51487MEDIUMWordPress ARI Stream Quiz – WordPress Quizzes Builder plugin <= 1.2.32 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2024-31369MEDIUMWordPress Soledad theme <= 8.4.2 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2024-21749MEDIUMWordPress 1 click disable all Plugin <= 1.0.1 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.2%CVE-2023-51683MEDIUMWordPress Easy PayPal Buy Now Button Plugin <= 1.8.1 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.2%CVE-2023-34185MEDIUMWordPress NextGen GalleryView Plugin <= 0.5.5 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.2%CVE-2024-31113MEDIUMWordPress Easy Digital Downloads plugin <= 3.2.11 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2024-35771MEDIUMWordPress Customizr theme <= 4.4.21 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2024-35772MEDIUMWordPress Hueman theme <= 3.7.24 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2023-35778MEDIUMWordPress Recent Posts Slider Plugin <= 1.1 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.2%CVE-2024-24843HIGHWordPress PowerPack Pro for Elementor Plugin < 2.10.8 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.2%CVE-2024-43927MEDIUMWordPress Email Address Encoder plugin <= 1.0.23 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2025-57310HIGHA Cross-Site Request Forgery (CSRF) vulnerability in Salmen2/Simple-Faucet-Script v1.07 via crafted POST request to admin.php?p=ads&c=1 alloEPSS 0.2%CVE-2019-20460HIGHAn issue was discovered on Epson Expression Home XP255 20.08.FM10I8 devices. POST requests don't require (anti-)CSRF tokens or other mechaniEPSS 0.2%CVE-2024-26445MEDIUMflusity-CMS v2.33 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /core/tools/delete_place.phpEPSS 0.2%