Weaknesses of type CWE-352

5,740 results
CVE-2025-49449MEDIUMWordPress Interactive Regional Map of Africa plugin <= 1.0 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2026-22030MEDIUMReact Router has CSRF issue in Action/Server Action Request ProcessingEPSS 0.1%CVE-2025-62890MEDIUMWordPress Premmerce Brands for WooCommerce plugin <= 1.2.13 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-49332MEDIUMWordPress WP Time Slots Booking Form plugin <= 1.2.30 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2026-42289HIGHChurchCRM: Cross-Site Request Forgery (CSRF) Leading to Admin Privilege EscalationEPSS 0.1%CVE-2026-8708MEDIUMGenzel breadcrumbs <= 1.2 - Cross-Site Request Forgery to Settings Update via Plugin Settings PageEPSS 0.1%CVE-2025-39351MEDIUMWordPress Grand Restaurant WordPress theme <= 7.0 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-43835MEDIUMWordPress wp-cyr-cho plugin <= 0.1 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-54039MEDIUMWordPress Animator plugin <= 3.0.16 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2025-39371MEDIUMWordPress Author Box Plugin With Different Description plugin <= 1.3.5 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-58818MEDIUMWordPress Developer Tools Blocker Plugin <= 3.2.1 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2025-12406MEDIUMProject Honey Pot Spam Trap <= 1.0.1 - Cross-Site Request Forgery to Stored Cross-Site ScriptingEPSS 0.1%CVE-2025-46504HIGHWordPress Vasaio QR Code plugin <= 1.2.5 - CSRF to XSS vulnerabilityEPSS 0.1%CVE-2025-58801MEDIUMWordPress Responder Plugin <= 4.3.8 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2025-48153HIGHWordPress Import CDN-Remote Images plugin <= 2.1.2 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2025-48362MEDIUMWordPress Hesabfa Accounting plugin <= 2.2.5 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2026-57641MEDIUMWordPress Real Estate 7 theme <= 3.5.9 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-46435HIGHWordPress Time Based Greeting plugin <= 2.2.2 - CSRF to Stored XSS vulnerabilityEPSS 0.1%CVE-2025-30995HIGHWordPress Widgetize Pages Light plugin <= 3.0 - Cross Site Request Forgery (CSRF) to Stored XSS vulnerabilityEPSS 0.1%CVE-2025-27009HIGHWordPress My auctions allegro plugin <= 3.6.33 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%