Weaknesses of type CWE-352
5,731 resultsCVE-2023-42435MEDIUMCross-Site Request Forgery in DEXMA DEXGateEPSS 0.2%CVE-2025-30564HIGHWordPress Custom Script Integration plugin <= - 2.1 Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.2%CVE-2025-30561HIGHWordPress CAS Maestro plugin <= 1.1.3 - CSRF to Stored XSS vulnerabilityEPSS 0.2%CVE-2025-30857HIGHWordPress Currency Switcher for WooCommerce plugin <= 0.0.7 - CSRF to Stored XSS vulnerabilityEPSS 0.2%CVE-2025-30565HIGHWordPress banner-manager plugin <= 16.04.19 - CSRF to Stored XSS vulnerabilityEPSS 0.2%CVE-2026-4121MEDIUMKcaptcha <= 1.0.1 - Cross-Site Request Forgery to Settings UpdateEPSS 0.2%CVE-2024-3246MEDIUMLiteSpeed Cache <= 6.2.0.1 - Cross-Site Request Forgery to Stored Cross-Site ScriptingEPSS 0.2%CVE-2024-12005MEDIUMWP-BibTeX <= 3.0.1 - Cross-Site Request Forgery to Stored and Reflected Cross-Site ScriptingEPSS 0.2%CVE-2025-3099MEDIUMAdvanced Search by My Solr Server <= 2.0.5 - Cross-Site Request Forgery to Stored Cross-Site ScriptingEPSS 0.2%CVE-2024-37213HIGHWordPress AliExpress Dropshipping with AliNext Lite plugin <= 3.4.6 - CSRF to XSS vulnerabilityEPSS 0.2%CVE-2025-44185MEDIUMSourceCodester Best Employee Management System V1.0 is vulnerable to Cross Site Request Forgery (CSRF) in /admin/change_pass.php via the pasEPSS 0.2%CVE-2025-30550HIGHWordPress CallPhone'r plugin <= 1.1.1 - CSRF to Stored XSS vulnerabilityEPSS 0.2%CVE-2024-21020MEDIUMVulnerability in the Oracle Complex Maintenance, Repair, and Overhaul product of Oracle E-Business Suite (component: LOV). Supported versioEPSS 0.2%CVE-2025-23743HIGHWordPress Social Analytics plugin <= 0.2 - CSRF to Stored XSS vulnerabilityEPSS 0.2%CVE-2023-6008MEDIUMUserPro <= 5.1.1 - Cross-Site Request Forgery via multiple functionsEPSS 0.2%CVE-2026-8604HIGHCross-Site request forgery (CSRF) in ScadaBREPSS 0.2%CVE-2026-33252HIGHMCP Go SDK Allows Cross-Site Tool Execution for HTTP Servers without AuthorizatrionEPSS 0.2%CVE-2026-22323HIGHCross‑Site Request Forgery in Link Aggregation ConfigurationEPSS 0.2%CVE-2026-4922HIGHCross-Site Request Forgery (CSRF) in GitLabEPSS 0.2%CVE-2025-30769HIGHWordPress WIP WooCarousel Lite plugin <= 1.1.7 - Cross Site Request Forgery (CSRF) to Stored XSS vulnerabilityEPSS 0.2%