Weaknesses of type CWE-352

5,740 results
CVE-2025-49440MEDIUMWordPress WP Security Master plugin <= 1.0.2 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2025-65107MEDIUMLangfuse SSO Account Takeover via CSRF or phishing attackEPSS 0.1%CVE-2025-10311MEDIUMComment Info Detector <= 1.0.5 - Cross-Site Request Forgery to Settings UpdateEPSS 0.1%CVE-2018-25152MEDIUMEcessa Edge EV150 10.7.4 Cross-Site Request Forgery via User ConfigurationEPSS 0.1%CVE-2025-54541MEDIUMCross-Site Request Forgery in QuickCMSEPSS 0.1%CVE-2025-31456MEDIUMWordPress Ultimate Security Checker plugin <= 4.2 - Cross Site Request Forgery (CSRF) to Security Rescan vulnerabilityEPSS 0.1%CVE-2025-24772MEDIUMWordPress Pay with Contact Form 7 plugin <= 1.0.4 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2025-22637MEDIUMWordPress Print PDF Generator and Publisher plugin <= 1.2.0 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-31079MEDIUMWordPress Usermaven plugin <= 1.2.1 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-31438MEDIUMWordPress WP Supersized plugin <= 3.1.6 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2025-31410MEDIUMWordPress WP Church Donation plugin <= 1.7 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-62009MEDIUMWordPress UPC/EAN/GTIN Code Generator plugin <= 2.0.2 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-47466MEDIUMWordPress Ultimate WP Mail plugin <= 1.3.4 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2025-30986MEDIUMWordPress Elite Video Player plugin <= 10.0.5 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2025-53263MEDIUMWordPress Address Autocomplete via Google for Gravity Forms plugin <= 1.3.4 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2025-49446MEDIUMWordPress Admin Notes plugin <=1.1 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2025-47473MEDIUMWordPress PW WooCommerce Bulk Edit plugin <= 2.134 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2025-10309MEDIUMPayPal Forms <= 1.0.3 - Cross-Site Request ForgeryEPSS 0.1%CVE-2025-25137MEDIUMWordPress Social Links plugin <= 1.0.11 - Stored Cross-Site Scripting vulnerabilityEPSS 0.1%CVE-2025-31600MEDIUMWordPress DesignO plugin <= 2.6.0 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%