Weaknesses of type CWE-352
5,740 resultsCVE-2025-58199MEDIUMWordPress Fastly plugin <= 1.2.28 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-58794MEDIUMWordPress Notification for Telegram plugin <= 3.5 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-58611MEDIUMWordPress Tickera Plugin <= 3.5.5.6 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2025-60115MEDIUMWordPress Instapage plugin plugin <= 3.7.0 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-53347MEDIUMWordPress Kalium Theme <= 3.18.3 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2025-57992MEDIUMWordPress Mail Baby SMTP plugin <= 2.8 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-58219MEDIUMWordPress Show Pages List Plugin <= 1.2.0 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2025-31617HIGHWordPress PostmarkApp Email Integrator plugin <= 2.4 - CSRF to Stored XSS vulnerabilityEPSS 0.1%CVE-2025-57970MEDIUMWordPress SALESmanago Plugin <= 3.8.1 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2025-58010MEDIUMWordPress SV Proven Expert Plugin <= 2.0.06 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2025-58799MEDIUMWordPress Custom WooCommerce Checkout Fields Editor Plugin <= 1.3.4 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2025-52767MEDIUMWordPress NetInsight Analytics Implementation Plugin <= 1.0.3 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2025-60137MEDIUMWordPress Post Featured Video Plugin <= 1.7 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2025-55057MEDIUMMultiple CWE-352 Cross-Site Request Forgery (CSRF)EPSS 0.1%CVE-2025-25100HIGHWordPress Cazamba plugin <= 1.2 - CSRF to Reflected Cross Site Scripting (XSS) vulnerabilityEPSS 0.1%CVE-2025-14853MEDIUMLEAV Last Email Address Validator <= 1.7.1 - Cross-Site Request Forgery to Plugin Settings UpdateEPSS 0.1%CVE-2025-60139MEDIUMWordPress Sendle Shipping plugin <= 6.02 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-25086HIGHWordPress Secret Meta plugin <= 1.2.1 - CSRF to Reflected Cross Site Scripting (XSS) vulnerabilityEPSS 0.1%CVE-2025-58200MEDIUMWordPress Flexible FAQ Plugin <= 0.2 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2026-2410MEDIUMDisable Admin Notices – Hide Dashboard Notifications <= 1.4.2 - Cross-Site Request Forgery to Plugin Settings UpdateEPSS 0.1%