Weaknesses of type CWE-352
5,743 resultsCVE-2025-58806HIGHWordPress WordPress Error Monitoring by Bugsnag Plugin <= 1.6.3 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2025-58852HIGHWordPress MSTW League Manager Plugin <= 2.10 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2025-58853HIGHWordPress Popping Sidebars and Widgets Light Plugin <= 1.27 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2025-64357MEDIUMWordPress Advanced Database Cleaner plugin <= 3.1.6 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-52765HIGHWordPress NetInsight Analytics Implementation Plugin <= 1.0.3 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2025-48353HIGHWordPress Clickbank WordPress Plugin (Niche Storefront) plugin <= 1.3.5 - Cross Site Request Forgery (CSRF) to Stored XSS vulnerabilityEPSS 0.1%CVE-2026-8140HIGHConcrete CMS 9.5.0 and below is vulnerable to CSRF on download() in the package install controllerEPSS 0.1%CVE-2025-12413MEDIUMSocial Media WPCF7 Stop Words <= 1.1.3 - Cross-Site Request Forgery to Settings UpdateEPSS 0.1%CVE-2025-58670HIGHWordPress WP Content Protection Plugin <= 1.3 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%CVE-2025-48307HIGHWordPress SEO For Images plugin <= 1.0.0 - Cross Site Request Forgery (CSRF) to Stored XSS vulnerabilityEPSS 0.1%CVE-2026-41074HIGHRT has broken CSRF protection for authenticated usersEPSS 0.1%CVE-2025-64226MEDIUMWordPress Stockie Extra plugin <= 1.2.11 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-64290MEDIUMWordPress Premmerce Product Search for WooCommerce plugin <= 2.2.4 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-62957HIGHWordPress NikanWP WooCommerce Reporting plugin <= 1.0.0 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-64201MEDIUMWordPress PowerPress Podcasting plugin <= 11.13.12 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2025-6064MEDIUMWP URL Shortener <= 1.2 - Cross-Site Request Forgery to Stored Cross-Site ScriptingEPSS 0.1%CVE-2024-34810MEDIUMWordPress Skyline WP theme <= 1.0.10 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.1%CVE-2026-31849HIGHMissing CSRF Protection on Administrative Endpoints in Nexxt Nebula 300+EPSS 0.1%CVE-2025-7687MEDIUMLatest Post Accordian Slider <= 1.3 - Cross-Site Request Forgery to Stored Cross-Site ScriptingEPSS 0.1%CVE-2025-6055MEDIUMZen Sticky Social <= 0.3 - Cross-Site Request Forgery to Stored Cross-Site ScriptingEPSS 0.1%