Weaknesses of type CWE-352

5,738 results
CVE-2026-3332MEDIUMXhanch - My Advanced Settings <= 1.1.2 - Cross-Site Request Forgery to Settings UpdateEPSS 0.1%CVE-2025-13520MEDIUMMTCaptcha WordPress Plugin <= 2.7.2 - Cross-Site Request Forgery to Settings UpdateEPSS 0.1%CVE-2025-27359MEDIUMWordPress WP Media File Type Manager plugin <= 2.3.1 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-49285MEDIUMWordPress WP Cookie Notice for GDPR, CCPA & ePrivacy Consent plugin <= 3.8.0 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2025-49283MEDIUMWordPress Anti-spam, Spam protection, ReCaptcha for all forms and GDPR-compliant plugin <= 4.1.1 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2025-47551MEDIUMWordPress Wiki Embed plugin <= 1.4.6 - Cross Site Request Forgery (CSRF) to Settings Change vulnerabilityEPSS 0.1%CVE-2025-14077MEDIUMSimcast <= 1.0.0 - Cross-Site Request Forgery to Settings UpdateEPSS 0.1%CVE-2026-26317HIGHOpenClaw affected by cross-site request forgery (CSRF) through loopback browser mutation endpointsEPSS 0.1%CVE-2025-47519MEDIUMWordPress Easy PayPal Events plugin <= 1.2.2 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2026-1378MEDIUMWP Posts Re-order <= 1.0 - Cross-Site Request Forgery to Settings UpdateEPSS 0.1%CVE-2025-27360MEDIUMWordPress Quick Event Calendar plugin <= 1.4.9 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2025-48111MEDIUMWordPress YITH PayPal Express Checkout for WooCommerce plugin <= 1.49.0 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2026-1392MEDIUMSR WP Minify HTML <= 2.1 - Cross-Site Request Forgery to Settings UpdateEPSS 0.1%CVE-2025-31921MEDIUMWordPress WP Ultimate Tours Builder plugin <= 1.055 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2026-8943MEDIUMGoStats for WordPress <= 1.4 - Cross-Site Request Forgery via gostats_manage() FunctionEPSS 0.1%CVE-2025-47597MEDIUMWordPress WP Podcasts Manager plugin <= 1.3 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-53264MEDIUMWordPress ONet Regenerate Thumbnails plugin <= 1.5 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2025-49238MEDIUMWordPress Everest Backup plugin <= 2.3.3 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2026-8941MEDIUMCDN Linker lite <= 1.3.1 - Cross-Site Request Forgery to Plugin Settings UpdateEPSS 0.1%CVE-2025-47451MEDIUMWordPress Product Quantity Dropdown For Woocommerce plugin <= 1.2 - Cross Site Request Forgery (CSRF) to Settings Change vulnerabilityEPSS 0.1%