Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-352

CWE-352

Medium likelihood

Cross-Site Request Forgery (CSRF)

Parent: CWE-345 - Insufficient Verification of Data Authenticity

The web application does not, or cannot, sufficiently verify whether a request was intentionally provided by the user who sent the request, which could have originated from an unauthorized actor.

9,347 vulnerabilities with CWE-352

CVE-2024-53711 HIGH

Hotlink2Watermark <= 0.3.2 - Cross-Site Request Forgery to Stored Cross-Site Scripting

CVE-2024-53710 HIGH

ITERAS <= 1.8.0 - Cross-Site Request Forgery to Stored Cross-Site Scripting

CVE-2024-53707 MEDIUM

Ahmeti Wp Gzel Szler <= 4.0 - Cross-Site Request Forgery

CVE-2024-52479 MEDIUM

Astoundify Jobify < 4.3.0 - Cross-Site Request Forgery

CVE-2024-52477 HIGH

No-nonsense Labs Document & Data Automation <1.6.1 - CSRF

CVE-2024-53750 HIGH

Maeve Lander PayPal Responder - CSRF

CVE-2024-53778 HIGH

Essential Marketer Essential Breadcrumbs - Stored XSS

CVE-2024-11014 MEDIUM

NEC UNIVERGE IX 9.2-10.10.21, 10.8-10.8.27, 10.9-10.9.14 - Cross-Site Request Forgery via Management Interface

CVE-2024-53736 HIGH

Jason Grim Custom Shortcode Sidebars <1.2 - CSRF

CVE-2024-53734 HIGH

Idealien Category Enhancements <1.2 - XSS

CVE-2024-53732 HIGH

WP WOX Footer Flyout Widget - Stored XSS

CVE-2024-10521 MEDIUM

WordPress Contact Forms by Cimatti <= 1.9.2 - Cross-Site Request Forgery via process_bulk_action

CVE-2024-11743 MEDIUM

SourceCodester Best House Rental Management System 1.0 - CSRF

CVE-2024-11342 MEDIUM

Skt NURCaptcha <= 3.5.0 - Cross-Site Request Forgery via Missing Nonce Validation

CVE-2024-11673 MEDIUM

1000 Projects Bookstore Management System 1.0 - CSRF

CVE-2024-11415 HIGH

WP-Orphanage Extended <= 1.2 - Cross-Site Request Forgery via wporphanageex_menu_settings()

CVE-2024-9665 MEDIUM

Zimbra < 9.0.0 - Cross-Site Request Forgery via GraphQL Endpoint

CVE-2024-11601 HIGH

Sky Addons for Elementor <2.6.1 - CSRF

CVE-2024-8157 MEDIUM

Alphabetical List WordPress Plugin < 1.0.3 - Cross-Site Request Forgery in Settings Update

CVE-2024-5029 MEDIUM

CM Table Of Contents < 1.2.4 - Cross-Site Request Forgery and Stored Cross-Site Scripting

CVE-2024-11416 MEDIUM

WIP Incoming Lite <= 1.1.1 - Cross-Site Request Forgery via Missing Nonce Validation

CVE-2024-10726 MEDIUM

Friendly Functions for Welcart <1.2.4 - CSRF

CVE-2024-52451 HIGH

Aaron Robbins Post Ideas <2. - CSRF/XSS

CVE-2024-52446 HIGH

Buying Buddy IDX CRM <1.1.12 - CSRF

CVE-2024-52392 MEDIUM

w3speedster < 7.25 - Cross-Site Request Forgery

Previous Page 104 of 374 Next

Details

Vulnerabilities 9,347

Exploit Likelihood Medium

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy