CWE-352
Medium likelihoodCross-Site Request Forgery (CSRF)
The web application does not, or cannot, sufficiently verify whether a request was intentionally provided by the user who sent the request, which could have originated from an unauthorized actor.
9,371 vulnerabilities with CWE-352
CVE-2022-40132
MEDIUM
Seriously Simple Podcasting <= 2.16.0 - Cross-Site Request Forgery
CVSS 5.4
CVE-2022-38704
MEDIUM
WordPress SEO Redirection <8.9 - CSRF
CVSS 5.4
CVE-2022-38454
MEDIUM
Kraken.io Image Optimizer <2.6.5 - CSRF
CVSS 5.4
CVE-2022-38079
MEDIUM
WordPress Backup Scheduler <1.5.13 - CSRF
CVSS 5.4
CVE-2022-38470
MEDIUM
Customer Reviews for WooCommerce <5.3.5 - CSRF
CVSS 4.3
CVE-2022-36417
MEDIUM
3D Tag Cloud <= 3.8 - Stored Cross-Site Scripting via Cross-Site Request Forgery
CVSS 6.1
CVE-2022-40671
MEDIUM
Rate my Post - WP Rating System <= 3.3.4 - Cross-Site Request Forgery
CVSS 4.3
CVE-2022-38085
MEDIUM
WordPress Read more By Adam <1.1.8 - CSRF
CVSS 5.4
CVE-2022-36388
MEDIUM
WordPress YDS Support Ticket System <1.0 - CSRF
CVSS 5.4
CVE-2022-38095
MEDIUM
AlgolPlus Advanced Dynamic Pricing <4.1.3 - CSRF
CVSS 5.4
CVE-2022-36798
MEDIUM
Mega Addons For WPBakery Page Builder <= 4.2.7 - Cross-Site Request Forgery
CVSS 5.4
CVE-2022-3274
LOW
rdiffweb < 2.4.7 - Cross-Site Request Forgery
CVSS 3.5
CVE-2022-3267
MEDIUM
rdiffweb < 2.4.6 - Cross-Site Request Forgery
CVSS 4.3
CVE-2022-3233
MEDIUM
rdiffweb < 2.4.6 - Cross-Site Request Forgery
CVSS 4.3
CVE-2022-40219
MEDIUM
SedLex FavIcon Switcher <= 1.2.11 - Cross-Site Request Forgery
CVSS 5.4
CVE-2022-41253
HIGH
Jenkins CONS3RT Plugin <1.0.0 - CSRF
CVSS 8.8
CVE-2022-41249
HIGH
Jenkins SCM HttpClient Plugin <1.5 - CSRF
CVSS 8.8
CVE-2022-41245
HIGH
Jenkins Worksoft Execution Manager Plugin <10.0.3.503 - CSRF
CVSS 8.8
CVE-2022-41236
HIGH
Jenkins Security Inspector Plugin <117.v6eecc36919c2 - CSRF
CVSS 8.8
CVE-2022-41232
HIGH
Jenkins Build-Publisher Plugin <1.22 - CSRF
CVSS 8.0
CVE-2022-41227
HIGH
Jenkins NS-ND Integration Performance Publisher Plugin <4.8.0.129 -...
CVSS 8.8
CVE-2022-23685
HIGH
Aruba ClearPass Policy Manager 6.9.0-6.9.11 & 6.10.0-6.10.6 CSRF in Web Interface
CVSS 8.8
CVE-2022-35196
HIGH
TestLink 1.9.20 - Cross-Site Request Forgery via planView.php
CVSS 8.8
CVE-2022-1591
MEDIUM
WordPress Ping Optimizer < 2.35.1.3.0 - Cross-Site Request Forgery in Settings Update
CVSS 4.3
CVE-2022-3232
MEDIUM
rdiffweb < 2.4.5 - Cross-Site Request Forgery
CVSS 4.3
Details
Vulnerabilities
9,371
Exploit Likelihood
Medium