Weaknesses of type CWE-352
5,733 resultsCVE-2025-59572HIGHWordPress WorkScout-Core Plugin < 1.7.06 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.2%CVE-2025-49399HIGHWordPress NEX-Forms Plugin <= 9.1.3 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.2%CVE-2026-14800MEDIUMimhamzaazam ecommerceFlask cross-site request forgeryEPSS 0.2%CVE-2025-64166MEDIUMMercurius: Incorrect Content-Type parsing can lead to CSRF attackEPSS 0.2%CVE-2025-49381CRITICALWordPress ads.txt Guru Connect Plugin <= 1.1.1 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.2%CVE-2025-7684MEDIUMLast.fm Recent Album Artwork <= 1.0.2 - Cross-Site Request Forgery to Stored Cross-Site ScriptingEPSS 0.2%CVE-2025-60156CRITICALWordPress AR For WordPress plugin <= 8.34 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2025-67173MEDIUMA Cross-Site Request Forgery (CSRF) in the page creation/editing function of RiteCMS v3.1.0 allows attackers to arbitrarily create pages viaEPSS 0.2%CVE-2025-54052HIGHWordPress Realtyna Organic IDX plugin <= 5.0.0 - Local File Inclusion VulnerabilityEPSS 0.2%CVE-2019-25693HIGHResourceSpace 8.6 SQL Injection via collection_edit.phpEPSS 0.2%CVE-2026-0818MEDIUMCSS-based exfiltration of the content from partially encrypted emails when allowing remote contentEPSS 0.2%CVE-2026-9582MEDIUMSourceCodester CET Automated Grading System with AI Predictive Analytics cross-site request forgeryEPSS 0.2%CVE-2026-25151MEDIUMQwik City has a CSRF Protection Bypass via Content-Type Header ValidationEPSS 0.2%CVE-2025-58255CRITICALWordPress Custom Post Type Images Plugin <= 0.5 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.2%CVE-2025-39472MEDIUMWordPress WooCommerce Social Login plugin < 2.8.3 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2026-1745MEDIUMSourceCodester Medical Certificate Generator App cross-site request forgeryEPSS 0.2%CVE-2025-53587HIGHWordPress Findgo Theme <= 1.3.57 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.2%CVE-2025-7683MEDIUMLatestCheckins <= 1 - Cross-Site Request Forgery to Stored Cross-Site ScriptingEPSS 0.2%CVE-2025-58244HIGHWordPress Constructo Theme <= 4.3.9 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.2%CVE-2025-58013HIGHWordPress CouponXxL Theme <= 4.5.0 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.2%