Weaknesses of type CWE-352

5,731 results
CVE-2024-37458MEDIUMWordPress Highlight theme <= 1.0.29 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2025-30888MEDIUMWordPress Custom Fields Account Registration For Woocommerce Plugin <= 1.1 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2024-37236MEDIUMWordPress Loco Translate plugin <= 2.6.9 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2024-37431MEDIUMWordPress Mesmerize theme <= 1.6.120 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2025-23717HIGHWordPress Theme My Ontraport Smartform plugin <= 1.2.11 - CSRF to Stored XSS vulnerabilityEPSS 0.2%CVE-2024-37103MEDIUMWordPress Education Zone theme <= 1.3.4 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2025-25128HIGHWordPress Facilita Form Tracker plugin <= 1.0 - CSRF to Stored XSS vulnerabilityEPSS 0.2%CVE-2025-10700MEDIUMAlly - Web Accessibility & Usability <= 3.8.0 - Cross-Site Request Forgery to Plugin Settings UpdateEPSS 0.2%CVE-2024-37441MEDIUMWordPress NewsMash theme <= 1.0.34 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2025-32271MEDIUMWordPress Woocommerce Role Pricing Plugin <= 3.5.6 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2025-32269MEDIUMWordPress WP Zendesk for Contact Form 7, WPForms, Elementor, Formidable and Ninja Forms Plugin <= 1.1.3 - Cross Site Request Forgery (CSRF) to Settings Change vulnerabilityEPSS 0.2%CVE-2024-37448MEDIUMWordPress OnePress theme <= 2.3.6 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2026-8423MEDIUMJaviBola Custom Theme Test <= 2.0.5 - Cross-Site Request ForgeryEPSS 0.2%CVE-2024-5935MEDIUMCSRF Vulnerability in imartinez/privategptEPSS 0.2%CVE-2026-13422MEDIUMHD Quiz 2.2.0 - 2.2.1 - Cross-Site Request Forgery via Multiple AJAX HandlersEPSS 0.2%CVE-2025-2871MEDIUMWordPress Mega Menu – QuadMenu <= 3.2.0 - Cross-Site Request Forgery to Limited User Meta UpdateEPSS 0.2%CVE-2025-1530MEDIUMTripetto <= 8.0.9 - Cross-Site Request Forgery to Arbitrary Results DeletionEPSS 0.2%CVE-2024-4426MEDIUMComparison Slider <= 1.0.5 - Cross-Site Request ForgeryEPSS 0.2%CVE-2025-27454MEDIUMCVE-2025-27454EPSS 0.2%CVE-2023-52129MEDIUMWordPress teachPress Plugin <= 9.0.4 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.2%