Weaknesses of type CWE-352

5,731 results
CVE-2020-37046MEDIUMSistem Informasi Pengumuman Kelulusan Online 1.0 - Cross-Site Request ForgeryEPSS 0.2%CVE-2025-27454MEDIUMCVE-2025-27454EPSS 0.2%CVE-2025-23081MEDIUMVarious security vulnerabilities in Extension:DataTransferEPSS 0.2%CVE-2024-13337MEDIUMWebcraftic Clearfy – WordPress optimization plugin <= 2.3.2 - Cross-Site Request Forgery to Plugin Settings Update via 'setup-wbcr_clearfy'EPSS 0.2%CVE-2024-5935MEDIUMCSRF Vulnerability in imartinez/privategptEPSS 0.2%CVE-2025-1530MEDIUMTripetto <= 8.0.9 - Cross-Site Request Forgery to Arbitrary Results DeletionEPSS 0.2%CVE-2024-12170MEDIUMViewMedica Embed <= 1.4.15 - Cross-Site Request Forgery to SQL InjectionEPSS 0.2%CVE-2026-22323HIGHCross‑Site Request Forgery in Link Aggregation ConfigurationEPSS 0.2%CVE-2025-30565HIGHWordPress banner-manager plugin <= 16.04.19 - CSRF to Stored XSS vulnerabilityEPSS 0.2%CVE-2024-12005MEDIUMWP-BibTeX <= 3.0.1 - Cross-Site Request Forgery to Stored and Reflected Cross-Site ScriptingEPSS 0.2%CVE-2025-30857HIGHWordPress Currency Switcher for WooCommerce plugin <= 0.0.7 - CSRF to Stored XSS vulnerabilityEPSS 0.2%CVE-2024-21020MEDIUMVulnerability in the Oracle Complex Maintenance, Repair, and Overhaul product of Oracle E-Business Suite (component: LOV). Supported versioEPSS 0.2%CVE-2023-42435MEDIUMCross-Site Request Forgery in DEXMA DEXGateEPSS 0.2%CVE-2025-30550HIGHWordPress CallPhone'r plugin <= 1.1.1 - CSRF to Stored XSS vulnerabilityEPSS 0.2%CVE-2024-30946MEDIUMDedeCMS v5.7 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /src/dede/co_do.php.EPSS 0.2%CVE-2024-53809MEDIUMWordPress Namaste! LMS plugin <= 2.6.4.1 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2025-44185MEDIUMSourceCodester Best Employee Management System V1.0 is vulnerable to Cross Site Request Forgery (CSRF) in /admin/change_pass.php via the pasEPSS 0.2%CVE-2024-13432MEDIUMWebcamconsult <= 1.5.0 - Cross-Site Request Forgery to Stored Cross-Site ScriptingEPSS 0.2%CVE-2025-23749HIGHWordPress mybb Last Topics plugin <= 1.0 - CSRF to Stored XSS vulnerabilityEPSS 0.2%CVE-2025-30769HIGHWordPress WIP WooCarousel Lite plugin <= 1.1.7 - Cross Site Request Forgery (CSRF) to Stored XSS vulnerabilityEPSS 0.2%