Weaknesses of type CWE-352

5,738 results
CVE-2025-27335MEDIUMWordPress Auto Tag Links Plugin <= 1.0.13 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-31588MEDIUMWordPress Elfsight Testimonials Slider plugin <= 1.0.1 - Cross Site Request Forgery (CSRF) to Settings Change vulnerabilityEPSS 0.1%CVE-2025-5019MEDIUMHive Support <= 1.2.5 - Cross-Site Request Forgery via hs_update_ai_chat_settings FunctionEPSS 0.1%CVE-2025-13363MEDIUMIMAQ Core <= 1.2.1 - Cross-Site Request Forgery to URL Structure UpdateEPSS 0.1%CVE-2025-32265MEDIUMWordPress JobWP plugin <= 2.3.9 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-63716MEDIUMThe SourceCodester Leads Manager Tool v1.0 is vulnerable to Cross-Site Request Forgery (CSRF) attacks that allow unauthorized state-changingEPSS 0.1%CVE-2019-25234MEDIUMCarlo Gavazzi SmartHouse Webapp 6.5.33 Cross-Site Request Forgery and XSSEPSS 0.1%CVE-2025-31448MEDIUMWordPress Simple Trackback Disabler plugin <= 1.4 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2025-31447MEDIUMWordPress NertWorks All in One Social Share Tools plugin <=1.26 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2020-37096MEDIUMEdimax EW-7438RPn - Cross-Site Request Forgery (MAC Filtering)EPSS 0.1%CVE-2025-27328MEDIUMWordPress WP-PostRatings Cheater Plugin <= 1.5 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-30908HIGHWordPress Web Directory Free plugin <= 1.7.6 - CSRF to Cross Site Scripting (XSS) vulnerabilityEPSS 0.1%CVE-2025-27344MEDIUMWordPress Phee's LinkPreview Plugin <= 1.6.7 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2019-25238MEDIUMV-SOL GPON/EPON OLT Platform 2.03 Cross-Site Request Forgery VulnerabilityEPSS 0.1%CVE-2026-1503MEDIUMlogin_register <= 1.2.0 - Cross-Site Request Forgery to Stored Cross-Site ScriptingEPSS 0.1%CVE-2018-25133MEDIUMSynaccess netBooter NP-0801DU 7.4 Cross-Site Request Forgery via Admin InterfaceEPSS 0.1%CVE-2025-32267MEDIUMWordPress WP to Hootsuite plugin <= 1.5.8 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-32262MEDIUMWordPress RDP Wiki Embed plugin <= 1.2.20 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2025-32274MEDIUMWordPress w3all phpBB integration Plugin <= 2.9.8 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2026-10553MEDIUMjQuery Hover Footnotes <= 1.4 - Cross-Site Request Forgery to Plugin Settings UpdateEPSS 0.1%