Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-352

CWE-352

Medium likelihood

Cross-Site Request Forgery (CSRF)

Parent: CWE-345 - Insufficient Verification of Data Authenticity

The web application does not, or cannot, sufficiently verify whether a request was intentionally provided by the user who sent the request, which could have originated from an unauthorized actor.

9,352 vulnerabilities with CWE-352

CVE-2023-46781 MEDIUM

Roland Murg Current Menu Item for Custom Post Types <1.5 - CSRF

CVE-2023-46780 MEDIUM

Alter < 1.0 - Cross-Site Request Forgery

CVE-2023-46779 MEDIUM

EasyRecipe <= 3.5.3251 - Cross-Site Request Forgery

CVE-2023-46778 MEDIUM

TheFreeWindows Auto Limit Posts Reloaded <2.5 - CSRF

CVE-2023-46777 MEDIUM

Featherplugins Custom Login Page | Temporary Users | Rebrand Login | Login Captcha < 1.1.3 - CSRF

CVE-2023-46776 MEDIUM

Serena Villa Auto Excerpt <1.5 - CSRF

CVE-2023-46775 MEDIUM

Original texts Yandex WebMaster < 1.18 - Cross-Site Request Forgery

CVE-2023-47182 HIGH

Nazmul Hossain Nihal Login Screen Manager <= 3.5.2 - Cross-Site Request Forgery leading to Stored Cross-Site Scripting

CVE-2023-5945 MEDIUM

video_carousel_slider_with_lightbox 1.0 - Cross-Site Request Forgery

CVE-2023-42027 MEDIUM

IBM CICS TX and TXSeries for Multiplatforms - Cross-Site Request Forgery

CVE-2023-5899 HIGH

pkp_web_application_library < 3.3.0-16 - Cross-Site Request Forgery

CVE-2023-5898 HIGH

pkp/pkp_web_application_library < 3.3.0-16 - Cross-Site Request Forgery

CVE-2023-5897 HIGH

customlocale < 1.2.0-1 - Cross-Site Request Forgery

CVE-2023-5893 HIGH

pkp_web_application_library < 3.3.0-16 - Cross-Site Request Forgery

CVE-2023-43295 LOW

Click Studios (SA) Pty Ltd Passwordstate <Build 9785 - CSRF

CVE-2023-5519 MEDIUM

EventPrime < 3.2.0 - Cross-Site Request Forgery via Booking Creation

CVE-2023-4251 MEDIUM

EventPrime < 3.2.0 - Cross-Site Request Forgery via Booking Creation

CVE-2023-45670 HIGH

Frigate < 0.13.0 - Cross-Site Request Forgery via config/save and config/set Endpoints

CVE-2023-42323 HIGH

DouHaocms 3.3 - Cross-Site Request Forgery via adminAction.class.php

CVE-2023-43649 MEDIUM

baserCMS < 4.8.0 - Cross-Site Request Forgery in Content Preview Feature

CVE-2023-5820 CRITICAL

Thumbnail Slider With Lightbox 1.0 - Cross-Site Request Forgery via Add/Edit Functionality

CVE-2023-46375 HIGH

ZenTao Biz < 4.1.3 - Cross-Site Request Forgery

CVE-2023-42188 MEDIUM

IceCMS 2.0.1 - Cross-Site Request Forgery

CVE-2023-45317 HIGH

Sielco Analog FM Transmitter Firmware - Cross-Site Request Forgery

CVE-2023-5802 MEDIUM

WP Knowledgebase <= 1.3.4 - Cross-Site Request Forgery

Previous Page 168 of 375 Next

Details

Vulnerabilities 9,352

Exploit Likelihood Medium

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy