CWE-352

Medium likelihood

Cross-Site Request Forgery (CSRF)

Parent: CWE-345 - Insufficient Verification of Data Authenticity

The web application does not, or cannot, sufficiently verify whether a request was intentionally provided by the user who sent the request, which could have originated from an unauthorized actor.

9,355 vulnerabilities with CWE-352
CVE-2023-25443 MEDIUM
Wow-Company Button Generator <= 2.3.5 - Cross-Site Request Forgery
CVSS 4.3
CVE-2023-24417 MEDIUM
tiggersWelt.Net Worthy <= 1.6.5-6497609 - CSRF
CVSS 4.3
CVE-2023-35780 MEDIUM
Galleria <= 1.0.3 - Cross-Site Request Forgery
CVSS 4.3
CVE-2023-35778 MEDIUM
Recent Posts Slider <= 1.1 - Cross-Site Request Forgery
CVSS 4.3
CVE-2023-35047 MEDIUM
AREOI All Bootstrap Blocks <= 1.3.6 - Cross-Site Request Forgery
CVSS 4.3
CVE-2023-34185 MEDIUM
John Brien WordPress NextGen GalleryView <0.5.5 - CSRF
CVSS 4.3
CVE-2023-23671 HIGH
Layer Slider <= 1.1.9.7 - Cross-Site Request Forgery Leading to Post/Page Deletion
CVSS 7.1
CVE-2023-36687 MEDIUM
Andrea Tarantini Menubar <= 5.8.2 - CSRF
CVSS 5.4
CVE-2023-37391 MEDIUM
WordPress Mobile Pack <= 3.4.1 - Cross-Site Request Forgery
CVSS 5.4
CVE-2023-36693 MEDIUM
Alain Gonzalez WP RSS Images <1.1 - CSRF
CVSS 4.3
CVE-2023-36517 MEDIUM
Kevon Adonis WP Abstracts <2.6.2 - CSRF
CVSS 4.3
CVE-2023-35913 MEDIUM
OOPSpam Anti-Spam <= 1.1.44 - Cross-Site Request Forgery
CVSS 4.3
CVE-2023-35774 MEDIUM
LWS Tools <= 2.4.1 - Cross-Site Request Forgery
CVSS 5.4
CVE-2023-34015 MEDIUM
Piwebsolution Advanced-free-flat-shipping-woocommerce < 1.6.4.6 - CSRF
CVSS 5.4
CVE-2023-35781 MEDIUM
LWS Cleaner <= 2.3.0 - Cross-Site Request Forgery
CVSS 5.4
CVE-2023-25487 MEDIUM
Pixelgrade PixTypes <= 1.4.14 - Cross-Site Request Forgery
CVSS 4.3
CVE-2023-25468 MEDIUM
Reservation.Studio widget < 1.0.11 - Cross-Site Request Forgery
CVSS 4.3
CVE-2023-25051 MEDIUM
Comment Reply Notification <= 1.4 - Cross-Site Request Forgery
CVSS 4.3
CVE-2023-24421 MEDIUM
WP Engine PHP Compatibility Checker <1.5.2 - CSRF
CVSS 5.4
CVE-2023-23997 MEDIUM
Dave Jesch Database Collation Fix <= 1.2.7 - CSRF
CVSS 4.3
CVE-2023-23731 MEDIUM
HasTheme WishSuite <= 1.3.3 - Cross-Site Request Forgery
CVSS 4.3
CVE-2023-23704 MEDIUM
Pixelgrade Comments Ratings <= 1.1.6 - Cross-Site Request Forgery
CVSS 4.3
CVE-2023-23803 MEDIUM
HasThemes JustTables <= 1.4.9 - Cross-Site Request Forgery
CVSS 4.3
CVE-2023-23791 MEDIUM
HasThemes HT Menu <= 1.2.1 - Cross-Site Request Forgery
CVSS 4.3
CVE-2023-23792 MEDIUM
HasThemes Swatchly <= 1.2.0 - Cross-Site Request Forgery
CVSS 4.3
Details
Vulnerabilities 9,355
Exploit Likelihood Medium