Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-352

CWE-352

Medium likelihood

Cross-Site Request Forgery (CSRF)

Parent: CWE-345 - Insufficient Verification of Data Authenticity

The web application does not, or cannot, sufficiently verify whether a request was intentionally provided by the user who sent the request, which could have originated from an unauthorized actor.

9,321 vulnerabilities with CWE-352

CVE-2025-58013 HIGH

CouponXxL <4.5.0 - CSRF/Privilege Escalation

CVE-2025-58010 MEDIUM

straightvisions GmbH SV Proven Expert - CSRF

CVE-2025-57992 MEDIUM

Mail Baby SMTP <= 2.8 - Cross-Site Request Forgery

CVE-2025-57983 MEDIUM

Damian BP Disable Activation Reloaded - CSRF

CVE-2025-57978 MEDIUM

Themespride Advanced Appointment Booking & Scheduling <1.9 - CSRF

CVE-2025-57977 HIGH

wpdesk Flexible PDF Invoices - CSRF

CVE-2025-57970 MEDIUM

SALESmanago & Leadoo <= 3.8.1 - Cross-Site Request Forgery

CVE-2025-57960 MEDIUM

Travel Map <= 1.0.3 - Cross-Site Request Forgery

CVE-2025-57946 MEDIUM

Loc Bui payOS <= 1.0.73 - Cross-Site Request Forgery

CVE-2025-57942 MEDIUM

andy_moyle Emergency Password Reset <9.0 - CSRF

CVE-2025-57934 MEDIUM

LWS Affiliation <= 2.3.6 - Cross-Site Request Forgery

CVE-2025-57933 MEDIUM

Piotnet Forms <= 1.0.30 - Cross-Site Request Forgery

CVE-2025-57930 MEDIUM

Kanwei Double the Donation <2.0.0 - CSRF

CVE-2025-57927 MEDIUM

Stephanie Leary Dashboard Notepad - CSRF

CVE-2025-57924 MEDIUM

Automattic Developer < 1.2.6 - Cross-Site Request Forgery

CVE-2025-57918 HIGH

ERA404 LinkedInclude <= 3.0.4 - Cross-Site Request Forgery leading to Stored Cross-Site Scripting

CVE-2025-57915 MEDIUM

TOCHAT.BE <= 1.3.4 - Cross-Site Request Forgery

CVE-2025-57914 MEDIUM

Matat Technologies Deliver via Shipos for WooCommerce <3.0.2 - CSRF

CVE-2025-57905 MEDIUM

AgreeMe Checkboxes For WooCommerce <1.1.3 - CSRF

CVE-2025-57902 MEDIUM

RIS Version Switcher - Downgrade or Upgrade WP Versions Easily <= 1.0 - Cross-Site Request Forgery

CVE-2025-53456 MEDIUM

activewebsight SEO Backlink Monitor - CSRF

CVE-2025-53451 MEDIUM

Mihdan: No External Links <5.1.4 - CSRF

CVE-2025-10759 MEDIUM

Webkul QloApps < 1.7.0 - Authorization Bypass via CSRF Token Manipulation

CVE-2025-9887 MEDIUM

Custom Login And Signup Widget <1.0 - CSRF

CVE-2025-9883 MEDIUM

Browser Sniff plugin - WordPress <2.3 - CSRF

Previous Page 37 of 373 Next

Details

Vulnerabilities 9,321

Exploit Likelihood Medium

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy