Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-352

CWE-352

Medium likelihood

Cross-Site Request Forgery (CSRF)

Parent: CWE-345 - Insufficient Verification of Data Authenticity

The web application does not, or cannot, sufficiently verify whether a request was intentionally provided by the user who sent the request, which could have originated from an unauthorized actor.

9,347 vulnerabilities with CWE-352

CVE-2024-51669 MEDIUM

Vivwebs Dynamic Widgets <1.6.4 - CSRF

CVE-2024-52421 HIGH

WP Popup Window Maker <= 2.0 - Cross-Site Request Forgery to Stored Cross-Site Scripting

CVE-2024-52420 MEDIUM

Creative Motion Disable Admin Notices <1.3.5 - CSRF

CVE-2024-52402 CRITICAL

Cliconomics Exclusive Content Password Protect - CSRF

CVE-2024-52401 CRITICAL

Hacklog DownloadManager <2.1.4 - CSRF

CVE-2024-52388 HIGH

Hebrew Date <= 2.1.0 - Cross-Site Request Forgery to Stored Cross-Site Scripting

CVE-2024-51686 MEDIUM

Deepak Khokhar, Surender Khokhar Manage User Columns - CSRF

CVE-2024-51657 HIGH

Woopy Plugins SmartLink Dynamic URLs <1.1.0 - CSRF

CVE-2024-51656 HIGH

Flash Show And Hide Box <1.6 - CSRF

CVE-2024-51655 HIGH

Microkid Custom Author URL <2.0.1 - CSRF

CVE-2024-51654 HIGH

APK Downloader <= 1.0.0 - Cross-Site Request Forgery to Stored Cross-Site Scripting

CVE-2024-51653 HIGH

Mario Spinaci UPDATE NOTIFICATIONS <0.3.4 - XSS

CVE-2024-51652 HIGH

Prem Nawaz Khan, Victor Tsaran, Ron Feathers, Marc Kocher Skip To <...

CVE-2024-51650 HIGH

Scott @ MyDollarPlan.com Random Featured Post <1.1.3 - CSRF

CVE-2024-51649 HIGH

Patrick Lumumba Mobilize -<3.0.7 - CSRF

CVE-2024-51648 HIGH

e-shops <= 1.0.3 - Cross-Site Request Forgery to Reflected Cross-Site Scripting

CVE-2024-51645 HIGH

ThemeFuse Maintenance Mode -n/a-1.1.3 - XSS

CVE-2024-51644 HIGH

Sam Wilson Addressbook <1.1.3 - CSRF

CVE-2024-51643 HIGH

Rajan Agaskar Amazon Associate Filter - XSS

CVE-2024-51642 HIGH

Seo Free <= 1.4 - Cross-Site Request Forgery to Stored Cross-Site Scripting

CVE-2024-51641 HIGH

jcmlmorav Advanced PDF Generator <0.4.0 - CSRF

CVE-2024-51640 HIGH

MDR Webmaster Tools <= 1.1 - Cross-Site Request Forgery to Stored Cross-Site Scripting

CVE-2024-51639 HIGH

Naver Blog <= 1.0 - Cross-Site Request Forgery to Stored Cross-Site Scripting

CVE-2024-51638 HIGH

Awesome Shortcodes For Genesis - CSRF

CVE-2024-51637 HIGH

Scott E. Royalty Admin SMS Alert <1.1.0 - CSRF

Previous Page 105 of 374 Next

Details

Vulnerabilities 9,347

Exploit Likelihood Medium

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy