Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-352

CWE-352

Medium likelihood

Cross-Site Request Forgery (CSRF)

Parent: CWE-345 - Insufficient Verification of Data Authenticity

The web application does not, or cannot, sufficiently verify whether a request was intentionally provided by the user who sent the request, which could have originated from an unauthorized actor.

9,352 vulnerabilities with CWE-352

CVE-2023-46204 MEDIUM

Muller Digital Inc. Duplicate Theme <= 0.1.6 - CSRF

CVE-2023-46202 MEDIUM

Jeff Sherk Auto Login New User After Registration <1.9.6 - CSRF

CVE-2023-46198 MEDIUM

Scientech It Solution Appointment Calendar <2.9.6 - CSRF

CVE-2023-46193 MEDIUM

Internet Marketing Ninjas Internal Link Building <1.2.3 - CSRF

CVE-2023-46191 MEDIUM

Niels van Renselaar Open Graph Metabox <1.4.4 - CSRF

CVE-2023-46190 MEDIUM

Novo-Map < 1.1.2 - Cross-Site Request Forgery

CVE-2023-46189 MEDIUM

Simple Calendar - Google Calendar Plugin <= 3.2.5 - Cross-Site Request Forgery

CVE-2023-46152 MEDIUM

Pluginus Wolf - Wordpress Posts Bulk Editor And Products Manager Professional < 1.0.7.2 - CSRF

CVE-2023-46151 MEDIUM

AWESOME TOGI Product Category Tree <2.5 - CSRF

CVE-2023-46150 MEDIUM

WP Military WP Radio <= 3.1.9 - Cross-Site Request Forgery

CVE-2023-46095 MEDIUM

Chetan Gole Smooth Scroll Links <1.1.0 - CSRF

CVE-2023-46089 MEDIUM

Lee Le @ Userback Userback <1.0.13 - CSRF

CVE-2023-46085 MEDIUM

Wpmet Wp Ultimate Review <2.2.4 - CSRF

CVE-2023-46078 MEDIUM

PluginEver WC Serial Numbers <1.6.3 - CSRF

CVE-2023-46067 MEDIUM

Qwerty23 Rocket Font <= 1.2.3 - Cross-Site Request Forgery

CVE-2023-5690 HIGH

modoboa < 2.2.2 - Cross-Site Request Forgery

CVE-2023-5687 HIGH

mosparo < 1.0.3 - Cross-Site Request Forgery

CVE-2023-5602 MEDIUM

Social Media Share Buttons & Social Sharing Icons <= 2.8.5 - Cross-Site Request Forgery via AJAX Action Nonce Bypass

CVE-2023-5534 MEDIUM

WPBot - AI ChatBot for Live Support, Lead Generation, AI Services <= 4.8.9 and 4.9.2 - Cross-Site Request Forgery

CVE-2023-4926 MEDIUM

BEAR - Bulk Editor and Products Manager Professional for WooCommerce < 1.1.3.3 - Cross-Site Request Forgery

CVE-2023-4924 MEDIUM

BEAR - Bulk Editor and Products Manager Professional for WooCommerce <= 1.1.3.3 - Missing Authorization

CVE-2023-4923 MEDIUM

BEAR - Bulk Editor and Products Manager Professional for WooCommerce <= 1.1.3.3 - Cross-Site Request Forgery

CVE-2023-4975 MEDIUM

Website Builder by SeedProd < 6.15.13.1 - Cross-Site Request Forgery via Stripe Connect Token

CVE-2023-4942 MEDIUM

BEAR for WordPress <= 1.1.3.3 - Cross-Site Request Forgery via woobe_bulkoperations_visibility Function

CVE-2023-4940 MEDIUM

BEAR - Bulk Editor and Products Manager Professional for WooCommerce <= 1.1.3.3 - Cross-Site Request Forgery

Previous Page 169 of 375 Next

Details

Vulnerabilities 9,352

Exploit Likelihood Medium

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy