Weaknesses of type CWE-352
5,724 resultsCVE-2023-25443MEDIUMWordPress Button Generator – easily Button Builder Plugin <= 2.3.5 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.2%CVE-2024-35555MEDIUMidccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /admin/share_switch.php?mudi=switch&dataType=neEPSS 0.2%CVE-2023-7203MEDIUMSmart Forms < 2.6.87 - Subscriber+ Arbitrary Entry DeletionEPSS 0.2%CVE-2024-12220MEDIUMSMS for WooCommerce <= 2.8.1 - Cross-Site Request Forgery to Reflected Cross-Site ScriptingEPSS 0.2%CVE-2025-7133MEDIUMCodeAstro Online Movie Ticket Booking System cross-site request forgeryEPSS 0.2%CVE-2024-11417MEDIUMdejure.org Vernetzungsfunktion <= 1.97.5 - Cross-Site Request Forgery to Stored Cross-Site ScriptingEPSS 0.2%CVE-2022-42880MEDIUMWordPress Auto Upload Images Plugin <= 3.3 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.2%CVE-2024-32090MEDIUMWordPress Church Admin plugin <= 4.0.27 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2023-44236MEDIUMWordPress WP Captcha Plugin <= 2.0.0 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.2%CVE-2023-44475MEDIUMWordPress Add Shortcodes Actions And Filters Plugin <= 2.0.9 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.2%CVE-2024-32141MEDIUMWordPress Libsyn Publisher Hub plugin <= 1.4.4 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2022-38075MEDIUMWordPress Mantenimiento web plugin <= 0.13 - Cross-Site Request Forgery (CSRF) vulnerability leading to Stored Cross-Site Scripting (XSS)EPSS 0.2%CVE-2023-52149MEDIUMWordPress Floating Button Plugin <= 6.0 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.2%CVE-2023-46776MEDIUMWordPress Auto Excerpt everywhere Plugin <= 1.5 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.2%CVE-2023-51539MEDIUMWordPress Apollo13 Framework Extensions Plugin <= 1.9.1 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.2%CVE-2024-32435MEDIUMWordPress AffiEasy plugin <= 1.1.4 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2023-52121MEDIUMWordPress NitroPack Plugin <= 1.10.2 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.2%CVE-2024-49622HIGHWordPress Apa Banner Slider plugin <= 1.0.0 - CSRF to SQL Injection vulnerabilityEPSS 0.2%CVE-2023-46780MEDIUMWordPress Alter Plugin <= 1.0 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.2%CVE-2025-0810HIGHRead More & Accordion <= 3.4.7 - Cross-Site Request Forgery to Local File InclusionEPSS 0.2%