Weaknesses of type CWE-352

5,730 results
CVE-2025-29929MEDIUMTuleap is missing CSRF protection on tracker hierarchy administrationEPSS 0.2%CVE-2025-23662HIGHWordPress WP Panoramio plugin <= 1.5.0 - CSRF to Cross-Site Scripting vulnerabilityEPSS 0.2%CVE-2024-31109HIGHWordPress Woocommerce Social Media Share Buttons plugin <= 1.3.0 - CSRF to Cross Site Scripting (XSS) vulnerabilityEPSS 0.2%CVE-2024-32550HIGHWordPress BMI Adult & Kid Calculator plugin <= 1.2.1 - CSRF to XSS vulnerabilityEPSS 0.2%CVE-2025-23661HIGHWordPress NV Slider plugin <= 1.6 - CSRF to Stored Cross-Site Scripting vulnerabilityEPSS 0.2%CVE-2025-23654HIGHWordPress Twitter Post plugin <= 0.1 - CSRF to Stored XSS vulnerabilityEPSS 0.2%CVE-2024-34367HIGHWordPress Popup Box plugin <= 4.1.2 - CSRF to XSS vulnerabilityEPSS 0.2%CVE-2024-7574MEDIUMChristmasify! <= 1.5.5 - Cross-Site Request Forgery to Stored Cross-Site ScriptingEPSS 0.2%CVE-2025-23566HIGHWordPress Custom Post plugin <= 1.0 - CSRF to Stored XSS vulnerabilityEPSS 0.2%CVE-2025-23664HIGHWordPress Real Seguro Viagem plugin <= 2.0.5 - CSRF to Stored Cross-Site Scripting vulnerabilityEPSS 0.2%CVE-2024-32958HIGHWordPress Slash Admin plugin <= 3.8.1 - CSRF to XSS vulnerabilityEPSS 0.2%CVE-2025-23572HIGHWordPress UpDownUpDown plugin <= 1.1 - CSRF to Stored XSS vulnerabilityEPSS 0.2%CVE-2024-27197HIGHWordPress BeePress plugin <= 6.9.8 - CSRF to Stored Cross Site Scripting (XSS) vulnerabilityEPSS 0.2%CVE-2025-22552HIGHWordPress Affiliate Disclosure Statement plugin <= 0.3 - CSRF to Stored XSS vulnerabilityEPSS 0.2%CVE-2025-23660HIGHWordPress MFPlugin plugin <= 1.3 - CSRF to Cross-Site Scripting vulnerabilityEPSS 0.2%CVE-2024-32789HIGHWordPress Seers plugin <= 8.0.6 - Cross Site Request Forgery (CSRF) to XSS vulnerabilityEPSS 0.2%CVE-2026-22342HIGHWordPress WordPress Dating Theme theme <= 11.2.0 - Cross Site Request Forgery (CSRF) to Account Takeover vulnerabilityEPSS 0.2%CVE-2024-31272MEDIUMWordPress ARForms Form Builder plugin <= 1.6.1 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2025-23577HIGHWordPress Word Freshener plugin <= 1.3 - CSRF to Stored XSS vulnerabilityEPSS 0.2%CVE-2024-31105HIGHWordPress Tax Rate Upload plugin <= 2.4.5 - CSRF leading to Cross Site Scripting (XSS) vulnerabilityEPSS 0.2%