Weaknesses of type CWE-352
5,738 resultsCVE-2020-36918MEDIUMiDS6 DSSPro Digital Signage System 6.2 Cross-Site Request Forgery via User ManagementEPSS 0.1%CVE-2024-49795MEDIUMIBM ApplinX Cross-Site Request ForgeryEPSS 0.1%CVE-2026-8409LOWConcrete CMS 9 before 9.5.0 is vulnerable to Cross Site Request Forgery (CSRF) at concrete/controllers/dialog/logs/deleteEPSS 0.1%CVE-2026-57766HIGHWordPress WPIDE – File Manager & Code Editor plugin <= 3.5.6 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2020-36906MEDIUMP5 FNIP-8x16A FNIP-4xSH 1.0.20 Cross-Site Request Forgery via User ManagementEPSS 0.1%CVE-2025-3284MEDIUMUser Registration & Membership PRO – Custom Registration Form, Login Form, and User Profile <= 5.1.3 - Cross-Site Request Forgery to User DeletionEPSS 0.1%CVE-2025-23996MEDIUMWordPress AnyRoad plugin <= 1.3.2 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-12410MEDIUMSH Contextual Help <= 3.2.1 - Cross-Site Request Forgery to Stored Cross-Site ScriptingEPSS 0.1%CVE-2026-57759HIGHWordPress ProfileGrid plugin <= 5.9.9.7 - CSRF to Account Takeover vulnerabilityEPSS 0.1%CVE-2024-49794MEDIUMIBM ApplinX Cross-Site Request ForgeryEPSS 0.1%CVE-2025-12401MEDIUMLabel Plugins <= 0.5 - Cross-Site Request Forgery to Stored Cross-Site ScriptingEPSS 0.1%CVE-2025-26545HIGHWordPress Related Posts Line-up-Exactly by Milliard plugin <= 0.0.22 - CSRF to Stored XSS vulnerabilityEPSS 0.1%CVE-2025-25160HIGHWordPress Style Tweaker plugin <= 0.11 - CSRF to Stored XSS vulnerabilityEPSS 0.1%CVE-2025-24549HIGHWordPress Post Meta plugin <= 1.0.9 - Reflected Cross Site Scripting (XSS) vulnerabilityEPSS 0.1%CVE-2025-26547HIGHWordPress My Login Logout Plugin plugin <= 2.4 - CSRF to Stored Cross-Site Scripting vulnerabilityEPSS 0.1%CVE-2025-30965MEDIUMWordPress WPJobBoard plugin < 5.11.1 - Multiple Cross Site Request Forgery (CSRF) vulnerabilities vulnerabilityEPSS 0.1%CVE-2024-45983MEDIUMA Cross-Site Request Forgery (CSRF) vulnerability exists in kishan0725's Hospital Management System version 6.3.5. The vulnerability allows EPSS 0.1%CVE-2025-26568HIGHWordPress Easy Amazon Product Information plugin <= 4.0.1 - CSRF to Stored XSS vulnerabilityEPSS 0.1%CVE-2025-9882MEDIUMosTicket WP Bridge <= 1.9.2 - Cross-Site Request Forgery to Stored Cross-Site ScriptingEPSS 0.1%CVE-2025-9883MEDIUMBrowser Sniff <= 2.3 - Cross-Site Request Forgery to Stored Cross-Site ScriptingEPSS 0.1%