Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-352

CWE-352

Medium likelihood

Cross-Site Request Forgery (CSRF)

Parent: CWE-345 - Insufficient Verification of Data Authenticity

The web application does not, or cannot, sufficiently verify whether a request was intentionally provided by the user who sent the request, which could have originated from an unauthorized actor.

9,350 vulnerabilities with CWE-352

CVE-2023-47645 MEDIUM

RegistrationMagic < 5.2.2.6 - Cross-Site Request Forgery

CVE-2023-36685 MEDIUM

CartFlows Pro < 1.11.12 - Cross-Site Request Forgery

CVE-2023-36682 HIGH

Schema Pro < 2.7.7 - Cross-Site Request Forgery

CVE-2023-34030 MEDIUM

Really Simple Plugins Complianz <6.4.5-6.4.7 - CSRF

CVE-2023-33333 HIGH

Complianz and Complianz Premium <= 6.4.6.1 - Cross-Site Request Forgery to Cross-Site Scripting

CVE-2023-6137 MEDIUM

Frontier Post < 6.1 - Cross-Site Request Forgery

CVE-2023-48744 MEDIUM

Offshore Web Master Availability Calendar <1.2.6 - CSRF

CVE-2023-48334 MEDIUM

DAEXT League Table < 1.13 - Cross-Site Request Forgery

CVE-2023-48331 MEDIUM

MyBookTable Bookstore by Stormhill Media < 3.3.4 - Cross-Site Request Forgery

CVE-2023-48330 MEDIUM

Bulk Comment Remove < 2 - Cross-Site Request Forgery

CVE-2023-48323 MEDIUM

Awesome Support < 6.1.4 - Cross-Site Request Forgery

CVE-2023-48284 MEDIUM

WebToffee Decorator - WooCommerce Email Customizer <= 1.2.7 - Cross-Site Request Forgery

CVE-2023-48283 MEDIUM

Simple Testimonials Showcase <= 1.1.5 - Cross-Site Request Forgery

CVE-2023-48282 MEDIUM

Andrea Landonio Taxonomy filter < 2.2.9 - Cross-Site Request Forgery

CVE-2023-49076 MEDIUM

pimcore < 4.0.5 - Cross-Site Request Forgery in Customer Data Framework

CVE-2023-5772 MEDIUM

Debug Log Manager < 2.2.1 - Cross-Site Request Forgery via clear_log() Function

CVE-2023-49673 HIGH

Jenkins NeuVector Vulnerability Scanner < 2.2 - Cross-Site Request Forgery

CVE-2023-49655 HIGH

Jenkins MATLAB Plugin < 2.11.1 - Cross-Site Request Forgery

CVE-2023-6251 LOW

Checkmk <2.2.0p15-<2.1.0p37-<=2.0.0p39 - CSRF

CVE-2023-41792 MEDIUM

Pandora FMS 700-773 - Cross-Site Request Forgery and Cross-Site Scripting in SNMP Trap Editor

CVE-2023-47790 HIGH

Poporon Pz-LinkCard <= 2.4.8 - Cross-Site Request Forgery leading to Cross-Site Scripting

CVE-2023-47825 MEDIUM

TienCOP WP EXtra < 6.4 - Cross-Site Request Forgery

CVE-2023-47824 MEDIUM

wpWax Legal Pages < 1.3.9 - Cross-Site Request Forgery

CVE-2023-47819 MEDIUM

Easy Call Now by ThikShare <= 1.1.0 - Cross-Site Request Forgery

CVE-2023-47792 MEDIUM

Big File Uploads < 2.1.1 - Cross-Site Request Forgery

Previous Page 159 of 374 Next

Details

Vulnerabilities 9,350

Exploit Likelihood Medium

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy