Weaknesses of type CWE-352

5,703 results
CVE-2021-24349Gallery From Files <= 1.6.0 - Reflected Cross-Site Scripting (XSS)EPSS 0.4%CVE-2023-0642MEDIUMCross-Site Request Forgery (CSRF) in squidex/squidexEPSS 0.4%CVE-2024-29026HIGHOwncast cross origin requestEPSS 0.4%CVE-2022-1960MyCSS <= 1.1 - Arbitrary Settings Update via CSRFEPSS 0.4%CVE-2022-1627My Private Site < 3.0.8 - Arbitrary Settings Update via CSRFEPSS 0.4%CVE-2022-1845WP Post Styling < 1.3.1 - Multiple CSRFEPSS 0.4%CVE-2022-1842OpenBook Book Data <= 3.5.2 - Arbitrary Settings Update to Stored XSS via CSRFEPSS 0.4%CVE-2022-1653Social Share Buttons by Supsystic < 2.2.4 - Multiple CSRFEPSS 0.4%CVE-2022-1844WP Sentry <= 1.0 - Arbitrary Settings Update to Stored XSS via CSRFEPSS 0.4%CVE-2022-1793Private Files <= 0.40 - Protection Disabling via CSRFEPSS 0.4%CVE-2022-1603Mail Subscribe List < 2.1.4 - Arbitrary Subscribed User Deletion via CSRFEPSS 0.4%CVE-2022-1847Rotating Posts <= 1.11 - Arbitrary Settings Update to Stored XSS via CSRFEPSS 0.4%CVE-2022-1914Clean-Contact <= 1.6 - Arbitrary Settings Update to Stored XSS via CSRFEPSS 0.4%CVE-2022-1594HC Custom WP-Admin URL <= 1.4 - Arbitrary Settings Update via CSRFEPSS 0.4%CVE-2022-1885Cimy Header Image Rotator <= 6.1.1 - Arbitrary Settings Update via CSRFEPSS 0.4%CVE-2021-24410Telugu Bible Verse Daily <= 1.0 - CSRF to Stored XSSEPSS 0.4%CVE-2022-1695WP Simple Adsense Insertion < 2.1 - Inject ads and javascript via CSRFEPSS 0.4%CVE-2022-1846Tiny Contact Form <= 0.7 - Arbitrary Settings Update via CSRFEPSS 0.4%CVE-2021-24466Verse-O-Matic <= 4.1.1 - CSRF to Stored XSSEPSS 0.4%CVE-2021-24477Migrate Users <= 1.0.1 - CSRF to Stored Cross-Site Scripting (XSS)EPSS 0.4%