Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-352

CWE-352

Medium likelihood

Cross-Site Request Forgery (CSRF)

Parent: CWE-345 - Insufficient Verification of Data Authenticity

The web application does not, or cannot, sufficiently verify whether a request was intentionally provided by the user who sent the request, which could have originated from an unauthorized actor.

9,349 vulnerabilities with CWE-352

CVE-2023-52184 MEDIUM

WP Job Portal - A Complete Job Board < 2.0.6 - Cross-Site Request Forgery

CVE-2023-52150 HIGH

Dynamic Content for Elementor < 2.12.5 - Cross-Site Request Forgery

CVE-2023-6493 MEDIUM

Depicter Slider - WordPress <2.0.6 - CSRF

CVE-2023-6984 MEDIUM

PowerPack Addons for Elementor < 2.7.13 - Cross-Site Request Forgery via Missing Nonce Validation

CVE-2023-6980 MEDIUM

WP SMS < 6.5 - Cross-Site Request Forgery via Subscriber Delete Action

CVE-2023-51545 CRITICAL

ThemeHigh Job Manager & Career - CSRF

CVE-2023-51378 MEDIUM

Rise Blocks < 3.1 - Cross-Site Request Forgery

CVE-2023-51358 MEDIUM

Bright Plugins Block IPs for Gravity Forms <1.0.1 - CSRF

CVE-2023-51354 MEDIUM

Webba Booking < 4.5.33 - Cross-Site Request Forgery

CVE-2023-50902 MEDIUM

New User Approve < 2.5.1 - Cross-Site Request Forgery

CVE-2023-50878 MEDIUM

MStore API < 4.10.1 - Cross-Site Request Forgery

CVE-2023-51402 MEDIUM

Brain Storm Force Ultimate Addons for WPBakery Page Builder - CSRF

CVE-2023-50873 MEDIUM

Add Any Extension to Pages <= 1.4 - Cross-Site Request Forgery

CVE-2023-50858 MEDIUM

Bill Minozzi Anti Hacker < 4.34 - Cross-Site Request Forgery

CVE-2023-46699 MEDIUM

GROWI < 6.0.0 - Cross-Site Request Forgery in User Settings Page

CVE-2023-48652 MEDIUM

Concrete CMS 9.0-9.2.2 - Cross-Site Request Forgery via Log Deletion Endpoint

CVE-2023-7092 MEDIUM

Uniway UW-302VP 2.0 - Cross-Site Request Forgery in Admin Web Interface

CVE-2023-5961 HIGH

Moxa ioLogik E1200 Series Firmware < 3.3 - Cross-Site Request Forgery

CVE-2023-7052 MEDIUM

PHPGurukul Online Notes Sharing System 1.0 - Cross-Site Request Forgery in Profile Update

CVE-2023-7051 MEDIUM

PHPGurukul Online Notes Sharing System 1.0 - Cross-Site Request Forgery via delid Parameter

CVE-2023-7038 MEDIUM

automad < 1.10.9 - Cross-Site Request Forgery in User Creation Handler

CVE-2023-22674 MEDIUM

Hal Gatewood Dashicons + Custom Post Types < 1.0.2 - Cross-Site Request Forgery

CVE-2023-49920 MEDIUM

Apache Airflow 2.7.0-2.7.3 - Cross-Site Request Forgery via DAG Trigger GET Request

CVE-2023-6689 HIGH

Efacec Bcu 500 Firmware - CSRF

CVE-2023-50835 MEDIUM

Advanced Category Template <= 0.1 - Cross-Site Request Forgery

Previous Page 154 of 374 Next

Details

Vulnerabilities 9,349

Exploit Likelihood Medium

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy