Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-352

CWE-352

Medium likelihood

Cross-Site Request Forgery (CSRF)

Parent: CWE-345 - Insufficient Verification of Data Authenticity

The web application does not, or cannot, sufficiently verify whether a request was intentionally provided by the user who sent the request, which could have originated from an unauthorized actor.

9,350 vulnerabilities with CWE-352

CVE-2023-32583 MEDIUM

WP All Backup <= 2.4.3 - Cross-Site Request Forgery

CVE-2023-47230 MEDIUM

WordPress Contact Forms by Cimatti <= 1.6.0 - Cross-Site Request Forgery

CVE-2023-46638 MEDIUM

Webcodin WCP OpenWeather <2.5.0 - CSRF

CVE-2023-46636 MEDIUM

Custom Header Images <=1.2.1 - CSRF

CVE-2023-46629 MEDIUM

Remove Add to Cart WooCommerce <= 1.4.4 - Cross-Site Request Forgery

CVE-2023-46625 MEDIUM

DAEXT Autolinks Manager <1.10.04 - CSRF

CVE-2023-46620 MEDIUM

Fluenx DeepL API translation plugin <= 2.3.9.1 - Cross-Site Request Forgery

CVE-2023-46619 MEDIUM

WebDorado WDSocialWidgets <1.0.15 - CSRF

CVE-2023-46618 MEDIUM

Bala Krishna, Sergey Yakovlev Category SEO Meta Tags <2.5 - CSRF

CVE-2023-26543 MEDIUM

Aleksandr Guidrevitch WP Meteor Website Speed Optimization Addon <3...

CVE-2023-26531 MEDIUM

多合一搜索自动推送管理插件 <4.2.7 - CSRF

CVE-2023-27445 MEDIUM

Blog Floating Button <= 1.4.12 - Cross-Site Request Forgery

CVE-2023-27441 MEDIUM

New Adman < 1.6.8 - Cross-Site Request Forgery

CVE-2023-27438 MEDIUM

WP Translitera <= p1.2.5 - Cross-Site Request Forgery

CVE-2023-27436 MEDIUM

Elegant Custom Fonts <= 1.0 - Cross-Site Request Forgery

CVE-2023-27434 MEDIUM

WPGrim Classic Editor and Classic Widgets <= 1.2.5 - Cross-Site Request Forgery

CVE-2023-26524 MEDIUM

ExpressTech Quiz And Survey Master <= 8.0.10 - CSRF

CVE-2023-26518 MEDIUM

AccessPress Themes WP TFeed <1.6.9 - CSRF

CVE-2023-26516 HIGH

WPIndeed Debug Assistant <1.4 - CSRF

CVE-2023-26514 MEDIUM

WPGrim Dynamic XML Sitemaps Generator for Google <= 1.3.3 - CSRF

CVE-2023-28420 MEDIUM

Custom Options Plus <= 1.8.1 - Cross-Site Request Forgery

CVE-2023-28419 MEDIUM

Stranger Studios Force First and Last Name as Display Name <= 1.2 - Cross-Site Request Forgery

CVE-2023-28173 MEDIUM

Google XML Sitemap for Images <= 2.1.3 - Cross-Site Request Forgery

CVE-2023-28172 MEDIUM

WP MAPS < 4.4.2 - Cross-Site Request Forgery

CVE-2023-28167 MEDIUM

CF7 Invisible reCAPTCHA <= 1.3.3 - Cross-Site Request Forgery

Previous Page 164 of 374 Next

Details

Vulnerabilities 9,350

Exploit Likelihood Medium

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy