Weaknesses of type CWE-352

5,740 results
CVE-2025-31328MEDIUMCross-Site Request Forgery (CSRF) vulnerability in SAP S/4 HANA (Learning Solution)EPSS 0.1%CVE-2025-25149HIGHWordPress Login-box plugin <= 2.0.4 - CSRF to Stored XSS vulnerabilityEPSS 0.1%CVE-2025-1927HIGHCSRF in Restajet's Online Food Delivery SystemEPSS 0.1%CVE-2025-25147HIGHWordPress Auto SEO plugin <= 2.5.6 - CSRF to Stored XSS vulnerabilityEPSS 0.1%CVE-2026-44695MEDIUMOutline: Slack OAuth state can link a victim Outline account to an attacker Slack identityEPSS 0.1%CVE-2025-57931MEDIUMWordPress Popup box plugin <= 5.5.4 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2018-25174MEDIUMABC ERP 0.6.4 Cross-Site Request Forgery via _configurar_perfil.phpEPSS 0.1%CVE-2025-62975MEDIUMWordPress Raychat plugin <= 2.2.1 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2018-25177MEDIUMData Center Audit 2.6.2 Cross-Site Request Forgery via dca_resetpw.phpEPSS 0.1%CVE-2025-62687MEDIUMCross-site request forgery vulnerability exists in LogStare Collector. If a user views a crafted page while logged, unintended operations maEPSS 0.1%CVE-2025-6054MEDIUMYANewsflash <= 1.0.3 - Cross-Site Request Forgery to Stored Cross-Site ScriptingEPSS 0.1%CVE-2025-9887MEDIUMCustom Login And Signup Widget <= 1.0 - Cross-Site Request ForgeryEPSS 0.1%CVE-2025-54174MEDIUMCross-Site Request Forgery in QuickCMSEPSS 0.1%CVE-2025-49077MEDIUMWordPress Dynamic Pricing and Discount Rules plugin <= 2.2.9 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-48284MEDIUMWordPress Japanized For WooCommerce plugin <= 2.6.40 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2025-9896MEDIUMHidePost <= 2.3.8 - Cross-Site Request ForgeryEPSS 0.1%CVE-2026-45773MEDIUMTurborepo: Login callback CSRF/session fixationEPSS 0.1%CVE-2025-59894HIGHCross-Site request forgery (CSRF) vulnerability in Sync Breeze Enterprise ServerEPSS 0.1%CVE-2025-48342MEDIUMWordPress Dynamic Pricing & Discounts Lite for WooCommerce plugin <= 2.0.3 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-9897MEDIUMAP Background <= 3.8.2 - Cross-Site Request ForgeryEPSS 0.1%