Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-352

CWE-352

Medium likelihood

Cross-Site Request Forgery (CSRF)

Parent: CWE-345 - Insufficient Verification of Data Authenticity

The web application does not, or cannot, sufficiently verify whether a request was intentionally provided by the user who sent the request, which could have originated from an unauthorized actor.

9,349 vulnerabilities with CWE-352

CVE-2023-52072 HIGH

FlyCms v1.0 - Cross-Site Request Forgery via /system/site/userconfig_updagte

CVE-2023-52216 MEDIUM

JS & CSS Script Optimizer < 0.3.3 - Cross-Site Request Forgery

CVE-2023-52200 CRITICAL

ARMember < 4.0.22 - Cross-Site Request Forgery to PHP Object Injection

CVE-2023-6845 HIGH

CommentTweets < 0.6 - Cross-Site Request Forgery

CVE-2023-6532 HIGH

WP Blogs' Planetarium < 1.0 - Cross-Site Request Forgery in Settings Update

CVE-2023-6529 MEDIUM

WP VR WordPress <8.3.15 - CSRF

CVE-2023-52222 MEDIUM

WooCommerce < 8.2.2 - Cross-Site Request Forgery

CVE-2023-52122 MEDIUM

PressTigers Simple Job Board <2.10.6 - CSRF

CVE-2023-52121 MEDIUM

NitroPack < 1.10.2 - Cross-Site Request Forgery

CVE-2023-52120 MEDIUM

Basix NEX-Forms < 8.5.2 - Cross-Site Request Forgery

CVE-2023-52119 MEDIUM

Icegram Engage - WordPress <3.1.18 - CSRF

CVE-2023-51678 MEDIUM

Doofinder WP & WooCommerce Search <2.0.33 - CSRF

CVE-2023-51673 MEDIUM

Stylish Price List - Price Table Builder & QR Code Restaurant Menu <= 7.0.17 - Cross-Site Request Forgery

CVE-2023-51668 MEDIUM

WP Zone Inline Image Upload <1.1.18 - CSRF

CVE-2023-51539 MEDIUM

Apollo13Themes Apollo13 Framework Extensions - CSRF

CVE-2023-51538 MEDIUM

Awesome Support < 6.1.5 - Cross-Site Request Forgery

CVE-2023-51535 MEDIUM

CleanTalk Spam Protection, Anti-Spam, FireWall < 6.20 - Cross-Site Request Forgery

CVE-2023-52149 MEDIUM

Wow-Company Floating Button < 6.0 - Cross-Site Request Forgery

CVE-2023-52145 MEDIUM

Republish Old Posts < 1.21 - Cross-Site Request Forgery

CVE-2023-52136 MEDIUM

Smash Balloon Custom Twitter Feeds < 2.1.2 - Cross-Site Request Forgery

CVE-2023-52130 MEDIUM

Affiliates Manager < 2.9.31 - Cross-Site Request Forgery

CVE-2023-52129 MEDIUM

teachPress < 9.0.4 - Cross-Site Request Forgery

CVE-2023-52128 MEDIUM

White Label - WordPress Custom Admin, Custom Login Page, and Custom Dashboard <= 2.9.0 - Cross-Site Request Forgery

CVE-2023-52127 MEDIUM

WPClever WPC Product Bundles for WooCommerce < 7.3.1 - Cross-Site Request Forgery

CVE-2023-52123 MEDIUM

Strong Testimonials < 3.1.10 - Cross-Site Request Forgery

Previous Page 153 of 374 Next

Details

Vulnerabilities 9,349

Exploit Likelihood Medium

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy