Weaknesses of type CWE-352

5,738 results
CVE-2025-47446MEDIUMWordPress Listamester plugin <= 2.3.6 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2024-23734MEDIUMCross Site Request Forgery vulnerability in in the upload functionality of the User Profile pages in savignano S/Notify before 2.0.1 for BitEPSS 0.1%CVE-2025-30946MEDIUMWordPress Custom Bulk/Quick Edit plugin <= 1.6.10 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2025-47468MEDIUMWordPress Hash Form plugin <= 1.2.8 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2025-27340MEDIUMWordPress F12-Profiler Plugin <= 1.3.9 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-28952MEDIUMWordPress CubePoints plugin <= 3.2.1 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2025-49269MEDIUMWordPress Market Exporter plugin <= 2.0.22 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2026-3331MEDIUMLobot Slider Administrator <= 0.6.0 - Cross-Site Request Forgery to Settings UpdateEPSS 0.1%CVE-2026-1393MEDIUMAdd Google Social Profiles to Knowledge Graph Box <= 1.0 - Cross-Site Request Forgery to Settings UpdateEPSS 0.1%CVE-2025-53254MEDIUMWordPress Cyrlitera plugin <= 1.3.0 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-53261MEDIUMWordPress WP YouTube Live plugin <= 1.10.0 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-39414HIGHWordPress spam-stopper plugin <= 3.1.3 - CSRF to Stored XSS vulnerabilityEPSS 0.1%CVE-2026-5923MEDIUMPoly Voice – Potential Unauthorized Modification of WebUI using CSRF AttackEPSS 0.1%CVE-2026-24007MEDIUMTuleap is missing CSRF protection in the Overview inconsistent itemsEPSS 0.1%CVE-2025-39417HIGHWordPress Redirect wordpress to welcome or landing page plugin <= 2.0 - CSRF to Stored XSS vulnerabilityEPSS 0.1%CVE-2025-39419HIGHWordPress Revision Diet plugin <= 1.0.1 - CSRF to Stored XSS vulnerabilityEPSS 0.1%CVE-2025-32655HIGHWordPress Restrict User Registration plugin <= 1.0.1 - CSRF to Stored XSS vulnerabilityEPSS 0.1%CVE-2025-28933HIGHWordPress MaxA/B plugin <= 2.2.2 - CSRF to Stored XSS vulnerabilityEPSS 0.1%CVE-2025-28922HIGHWordPress Go To Top plugin <= 0.0.8 - CSRF to Stored XSS vulnerabilityEPSS 0.1%CVE-2025-39422HIGHWordPress WP Social Bookmarking plugin <= 3.6 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%