Falhas do tipo CWE-352
5.677 resultadosCVE-2022-28136HIGHA cross-site request forgery (CSRF) vulnerability in Jenkins JiraTestResultReporter Plugin 165.v817928553942 and earlier allows attackers toEPSS 0.7%CVE-2021-36908HIGHWordPress WP Reset PRO Premium Plugin <= 5.98 - Cross-Site Request Forgery (CSRF) vulnerabilityEPSS 0.7%CVE-2017-20065MEDIUMSupsystic Popup Plugin cross-site request forgeryEPSS 0.7%CVE-2019-1722MEDIUMCisco Expressway Series and Cisco TelePresence Video Communication Server Cross-Site Request Forgery VulnerabilityEPSS 0.7%CVE-2017-7556—Hawtio versions up to and including 1.5.3 are vulnerable to CSRF vulnerability allowing remote attackers to trick the user to visit their weEPSS 0.7%CVE-2021-25073—WP125 < 1.5.5 - Arbitrary Ad Deletion via CSRFEPSS 0.7%CVE-2024-27439MEDIUMApache Wicket: Possible bypass of CSRF protectionEPSS 0.7%CVE-2023-32991HIGHA cross-site request forgery (CSRF) vulnerability in Jenkins SAML Single Sign On(SSO) Plugin 2.0.2 and earlier allows attackers to send an HEPSS 0.7%CVE-2021-34633HIGHYoutube Feeder <= 2.0.1 - Cross-Site Request Forgery to Stored Cross-Site ScriptingEPSS 0.7%CVE-2021-34632HIGHSEO Backlinks <= 4.0.1 - Cross-Site Request Forgery to Stored Cross-Site ScriptingEPSS 0.7%CVE-2021-24179—Business Directory Plugin < 5.11 - Arbitrary File Upload to RCEEPSS 0.7%CVE-2021-24178—Business Directory Plugin < 5.11.1 - Arbitrary Add/Edit/Delete Form Field to Stored XSSEPSS 0.7%CVE-2019-1915MEDIUMMultiple Cisco Unified Communications Products Cross-Site Request Forgery VulnerabilityEPSS 0.7%CVE-2019-16002MEDIUMCisco SD-WAN Solution vManage Cross-Site Request Forgery VulnerabilityEPSS 0.7%CVE-2018-14783—NetComm Wireless G LTE Light Industrial M2M Router (NWL-25) with firmware 2.0.29.11 and prior. A cross-site request forgery condition can ocEPSS 0.7%CVE-2021-25053—WP Coder < 2.5.2 - RFI leading to RCE via CSRFEPSS 0.7%CVE-2017-7906—In ABB IP GATEWAY 3.39 and prior, the web server does not sufficiently verify that a request was performed by the authenticated user, which EPSS 0.7%CVE-2019-9883—Multi modules of MailSherlock MSR35 and MSR45 lead to a CSRF vulnerability. It allows attacker to elevate privilege of specific account.EPSS 0.7%CVE-2019-9882—Multi modules of MailSherlock MSR35 and MSR45 lead to a CSRF vulnerability. It allows attacker to add malicious email sources into whitelist.EPSS 0.7%CVE-2024-0623MEDIUMVK Block Patterns <= 1.31.1.1 - Cross-Site Request ForgeryEPSS 0.7%