Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-352

CWE-352

Medium likelihood

Cross-Site Request Forgery (CSRF)

Parent: CWE-345 - Insufficient Verification of Data Authenticity

The web application does not, or cannot, sufficiently verify whether a request was intentionally provided by the user who sent the request, which could have originated from an unauthorized actor.

9,347 vulnerabilities with CWE-352

CVE-2024-34439 MEDIUM

divSpot DS Site Message <1.14.4 - CSRF

CVE-2024-34427 MEDIUM

WP Favorite Posts < 1.6.8 - Cross-Site Request Forgery

CVE-2024-32712 HIGH

Podlove Podcast Publisher <= 4.0.14 - Missing Authorization

CVE-2024-31113 MEDIUM

Easy Digital Downloads < 3.2.11 - Cross-Site Request Forgery

CVE-2024-4594 MEDIUM

DedeCMS 5.7 - Cross-Site Request Forgery in sys_safe.php

CVE-2024-4593 MEDIUM

DedeCMS 5.7 - Cross-Site Request Forgery in sys_multiserv.php

CVE-2024-4592 MEDIUM

DedeCMS 5.7 - Cross-Site Request Forgery in sys_group_edit.php

CVE-2024-4591 MEDIUM

DedeCMS 5.7 - Cross-Site Request Forgery in sys_group_add.php

CVE-2024-4590 MEDIUM

DedeCMS 5.7 - Cross-Site Request Forgery in sys_info.php

CVE-2024-4589 MEDIUM

DedeCMS 5.7 - Cross-Site Request Forgery in mytag_edit.php

CVE-2024-4588 MEDIUM

DedeCMS 5.7 - Cross-Site Request Forgery in mytag_add.php

CVE-2024-4587 MEDIUM

DedeCMS 5.7 - Cross-Site Request Forgery in tpl.php

CVE-2024-4586 MEDIUM

DedeCMS 5.7 - Cross-Site Request Forgery in shops_delivery.php

CVE-2024-4600 HIGH

Socomec Net vision 7.20 - Cross-Site Request Forgery via set_param.cgi

CVE-2024-4585 MEDIUM

DedeCMS 5.7 - Cross-Site Request Forgery in member_type.php

CVE-2024-34379 MEDIUM

Rara Theme Restaurant and Cafe <1.2.1 - CSRF

CVE-2024-34367 HIGH

Popup box < 4.1.2 - Cross-Site Request Forgery to Cross-Site Scripting

CVE-2024-34069 HIGH

Werkzeug < 3.0.3 - Remote Code Execution via Debugger PIN Bypass

CVE-2024-33830 HIGH

idccms v1.35 - Cross-Site Request Forgery via /admin/readDeal.php?mudi=clearWebCache

CVE-2024-33829 MEDIUM

idccms v1.35 - Cross-Site Request Forgery via /admin/readDeal.php?mudi=updateWebCache

CVE-2024-3756 HIGH

MF Gig Calendar < 1.2.1 - Cross-Site Request Forgery via Event Deletion

CVE-2024-34502 CRITICAL

MediaWiki <1.39.6-1.41.1 - Info Disclosure

CVE-2024-4086 MEDIUM

CM Tooltip Glossary - Powerful Glossary Plugin <4.2.11 - CSRF

CVE-2024-4083 MEDIUM

Easy Restaurant Table Booking <1.0.0 - CSRF

CVE-2024-3215 MEDIUM

Paid Memberships Pro < 3.0.1 - Cross-Site Request Forgery via pmpro_update_level_group_order()

Previous Page 128 of 374 Next

Details

Vulnerabilities 9,347

Exploit Likelihood Medium

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy