Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-352

CWE-352

Medium likelihood

Cross-Site Request Forgery (CSRF)

Parent: CWE-345 - Insufficient Verification of Data Authenticity

The web application does not, or cannot, sufficiently verify whether a request was intentionally provided by the user who sent the request, which could have originated from an unauthorized actor.

9,352 vulnerabilities with CWE-352

CVE-2023-32501 MEDIUM

VikBooking Hotel Booking Engine & PMS <= 1.6.1 - Cross-Site Request Forgery

CVE-2023-32500 MEDIUM

WoodMart < 7.1.1 - Cross-Site Request Forgery

CVE-2023-32125 MEDIUM

Daniel Powney Multi Rating <= 5.0.6 - Cross-Site Request Forgery

CVE-2023-32093 MEDIUM

TPG Redirect <= 1.0.7 - Cross-Site Request Forgery

CVE-2023-32092 MEDIUM

PeepSo Community by PeepSo < 6.0.9.0 - Cross-Site Request Forgery

CVE-2023-31235 MEDIUM

Roland Barker, xnau webdesign Participants Database <2.4.9 - CSRF

CVE-2023-31093 MEDIUM

Chronosly Events Calendar <2.6.2 - CSRF

CVE-2023-31088 MEDIUM

Floating Action Button <= 1.2.1 - Cross-Site Request Forgery

CVE-2023-31086 MEDIUM

Simple Giveaways < 2.46.0 - Cross-Site Request Forgery

CVE-2023-32592 MEDIUM

Sunny Search < 1.0.2 - Cross-Site Request Forgery

CVE-2023-32587 MEDIUM

WP Reactions Lite <= 1.3.8 - Cross-Site Request Forgery

CVE-2023-32579 MEDIUM

Forget About Shortcode Buttons <= 2.1.2 - Cross-Site Request Forgery

CVE-2023-32512 MEDIUM

ShortPixel Adaptive Images <= 3.7.1 - Cross-Site Request Forgery

CVE-2023-34031 MEDIUM

Pascal Casier bbPress Toolkit <= 1.0.12 - CSRF

CVE-2023-34025 MEDIUM

LWS Hide Login < 2.1.6 - Cross-Site Request Forgery

CVE-2023-34024 MEDIUM

Guillemant David WP Full Auto Tags Manager <2.2 - CSRF

CVE-2023-32794 MEDIUM

WooCommerce Product Add-Ons <= 6.1.3 - Cross-Site Request Forgery

CVE-2023-32745 MEDIUM

WooCommerce AutomateWoo <= 5.7.1 - Cross-Site Request Forgery

CVE-2023-32744 MEDIUM

WooCommerce Product Recommendations <= 2.3.0 - Cross-Site Request Forgery

CVE-2023-32739 MEDIUM

WP Custom Cursors < 3.2 - Cross-Site Request Forgery

CVE-2023-32602 MEDIUM

LOKALYZE CALL ME NOW <= 3.0 - Cross-Site Request Forgery

CVE-2023-32594 MEDIUM

Hyphenator <= 5.1.5 - Cross-Site Request Forgery

CVE-2023-34177 MEDIUM

WP-Cache.Com <=1.1.1 - CSRF

CVE-2023-34171 MEDIUM

Alex Raven WP Report Post <2.1.2 - CSRF

CVE-2023-34169 MEDIUM

SAKURA Internet Inc. TS Webfonts <3.1.2 - CSRF

Previous Page 166 of 375 Next

Details

Vulnerabilities 9,352

Exploit Likelihood Medium

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy