Weaknesses of type CWE-352

5,711 results
CVE-2024-7459MEDIUMOSWAPP Warehouse Inventory System edit_account.php cross-site request forgeryEPSS 0.4%CVE-2021-4421MEDIUMAdvanced Popups <= 1.1.1 - Cross-Site Request Forgery BypassEPSS 0.4%CVE-2021-4420MEDIUMSell Media <= 2.5.5 - Cross-Site Request Forgery BypassEPSS 0.4%CVE-2023-27295MEDIUMCross-site request forgery is facilitated by OpenCATS failure to require CSRF tokens in POST requests. An attacker can exploit this issue byEPSS 0.4%CVE-2024-3643HIGHNewsletter Popup <= 1.2 - List Deletion via CSRFEPSS 0.4%CVE-2024-3406HIGHWP Prayer <= 2.0.9 - Email Settings Update via CSRFEPSS 0.4%CVE-2020-36757MEDIUMWP Hotel Booking <= 1.10.1 - Cross-Site Request Forgery BypassEPSS 0.4%CVE-2022-42447CRITICALCross-origin resource sharing vulnerability affects HCL CompassEPSS 0.4%CVE-2022-3372HIGHCross-Site Request Forgery (CSRF) in Riello UPS Netman-204EPSS 0.4%CVE-2021-4424MEDIUMSlider Hero <= 8.2.0 - Cross-Site Request Forgery BypassEPSS 0.4%CVE-2020-36756MEDIUM10WebAnalytics <= 1.2.8 - Cross-Site Request Forgery BypassEPSS 0.4%CVE-2021-4419MEDIUMWP-Backgrounds Lite <= 2.3 - Cross-Site Request Forgery BypassEPSS 0.4%CVE-2023-30529MEDIUMJenkins Lucene-Search Plugin 387.v938a_ecb_f7fe9 and earlier does not require POST requests for an HTTP endpoint, allowing attackers to reinEPSS 0.3%CVE-2021-47830MEDIUMGetSimple CMS My SMTP Contact Plugin 1.1.1 - CSRFEPSS 0.3%CVE-2022-3538MEDIUMWebmaster Tools Verification <= 1.2 - Unauthenticated Arbitrary Plugin DeactivationEPSS 0.3%CVE-2022-4707MEDIUMRoyal Elementor Addons <= 1.3.59 - Cross-Site Request Forgery to Menu Template creationEPSS 0.3%CVE-2012-10012MEDIUMBestWebSoft Facebook Like Button facebook-button-plugin.php fcbk_bttn_plgn_settings_page cross-site request forgeryEPSS 0.3%CVE-2023-24048HIGHCross Site Request Forgery (CSRF) vulnerability in Connectize AC21000 G6 641.139.1.1256 allows attackers to gain control of the device via cEPSS 0.3%CVE-2024-12642HIGHChunghwa Telecom TenderDocTransfer - Arbitrary File WriteEPSS 0.3%CVE-2023-0398MEDIUMCross-Site Request Forgery (CSRF) in modoboa/modoboaEPSS 0.3%