Weaknesses of type CWE-352
5,725 resultsCVE-2025-23842HIGHWordPress WordPress Gallery Plugin plugin <= 1.4 - CSRF to Stored XSS vulnerabilityEPSS 0.2%CVE-2025-30542MEDIUMWordPress WP SoundCloud Ultimate plugin <= 1.5 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2025-23822HIGHWordPress Category Custom Fields plugin <= 1.0 - CSRF to Stored XSS vulnerabilityEPSS 0.2%CVE-2024-23515MEDIUMWordPress Cincopa video and media plugin <= 1.159 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2025-30816MEDIUMWordPress publish post email notification plugin <= 1.0.2.3 - Cross Site Request Forgery (CSRF) to Settings Change vulnerabilityEPSS 0.2%CVE-2024-47305MEDIUMWordPress Use Any Font plugin <= 6.3.08 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2024-31933MEDIUMWordPress Page Builder: Live Composer plugin <= 1.5.35 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2025-30535MEDIUMWordPress External image replace plugin <= 1.0.8 - Cross Site Request Forgery (CSRF) to Settings Change vulnerabilityEPSS 0.2%CVE-2025-31784MEDIUMWordPress Embed Extended – Embed Maps, Videos, Websites, Source Codes, and more Plugin <= 1.4.0 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2025-23848HIGHWordPress Hotspots Analytics plugin <= 4.0.12 - CSRF to Stored XSS vulnerabilityEPSS 0.2%CVE-2025-23810HIGHWordPress Len Slider Plugin <= 2.0.11 - CSRF to Reflected Cross Site Scripting (XSS) vulnerabilityEPSS 0.2%CVE-2025-30823MEDIUMWordPress Anthologize Plugin <= 0.8.2 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2025-23870HIGHWordPress Copyright Safeguard Footer Notice plugin <= 3.0 - CSRF to Stored Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2025-31763MEDIUMWordPress Cache control by Cacholong Plugin <= 5.4.1 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2025-23902HIGHWordPress Error Notification plugin <= 0.2.7 - CSRF to Stored XSS vulnerabilityEPSS 0.2%CVE-2025-23470HIGHWordPress Visit Site Link enhanced plugin <= 1.0 - CSRF to Stored XSS vulnerabilityEPSS 0.2%CVE-2025-31808MEDIUMWordPress SCSS WP Editor plugin <= 1.2.1 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2025-30538MEDIUMWordPress Simple Optimizer plugin <= 1.2.7 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2025-30549MEDIUMWordPress Yummly Rich Recipes plugin <= 4.2 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2025-23808HIGHWordPress Custom List Table Example Plugin <=1.4.1 - CSRF to Reflected Cross Site Scripting (XSS) vulnerabilityEPSS 0.2%