Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-352

CWE-352

Medium likelihood

Cross-Site Request Forgery (CSRF)

Parent: CWE-345 - Insufficient Verification of Data Authenticity

The web application does not, or cannot, sufficiently verify whether a request was intentionally provided by the user who sent the request, which could have originated from an unauthorized actor.

9,322 vulnerabilities with CWE-352

CVE-2025-32502 HIGH

Lemmentwickler ePaper Lister - CSRF

CVE-2025-32501 HIGH

RentSyst <= 2.0.92 - Cross-Site Request Forgery to Stored Cross-Site Scripting

CVE-2025-32500 HIGH

Sudavar Codescar Radio Widget <0.4.2 - CSRF

CVE-2025-32498 HIGH

VKontakte Cross-Post <= 0.3.2 - Cross-Site Request Forgery to Stored Cross-Site Scripting

CVE-2025-32497 HIGH

Spoiler Block <= 1.7 - Cross-Site Request Forgery to Stored Cross-Site Scripting

CVE-2025-32496 CRITICAL

Uncodethemes Ultra Demo Importer <1.0.5 - CSRF

CVE-2025-32494 MEDIUM

bozdoz reCAPTCHA Jetpack <0.2.2 - CSRF

CVE-2025-32485 MEDIUM

Bjoern WP Performance Pack <2.5.4 - CSRF

CVE-2025-32484 HIGH

WP-Planification <= 2.3.1 - Cross-Site Request Forgery to Stored Cross-Site Scripting

CVE-2025-32482 HIGH

quanganhdo Custom Smilies <1.2 - CSRF/XSS

CVE-2025-32481 HIGH

Nino Social Connect <= 2.0 - Cross-Site Request Forgery to Stored Cross-Site Scripting

CVE-2025-32480 HIGH

Windows Live Writer <= 0.1 - Cross-Site Request Forgery to Stored Cross-Site Scripting

CVE-2025-32479 HIGH

ab-tools Flags Widget <1.0.8 - CSRF

CVE-2025-32478 HIGH

WP SexyLightBox <= 0.5.3 - Cross-Site Request Forgery to Stored Cross-Site Scripting

CVE-2025-32477 HIGH

WP-Easy Menu <= 0.41 - Cross-Site Request Forgery to Stored Cross-Site Scripting

CVE-2025-32476 HIGH

blueinstyle Advanced Tag Lists <1.2 - CSRF

CVE-2025-31404 HIGH

Wladyslaw Madejczyk AF Tell a Friend - Stored XSS

CVE-2025-31402 HIGH

NewsBoard Post and RSS Scroller <= 1.2.12 - Cross-Site Request Forgery to Stored Cross-Site Scripting

CVE-2025-31401 HIGH

MMX - Make Me Christmas <1.0.0 - CSRF

CVE-2025-31400 HIGH

icyleaf WS Audio Player <1.1.8 - CSRF/XSS

CVE-2025-31399 HIGH

CG Scroll To Top <= 3.5 - Cross-Site Request Forgery to Stored Cross-Site Scripting

CVE-2025-31395 HIGH

a.ankit Easy Custom CSS <1.0 - CSRF

CVE-2025-31393 HIGH

vfvalent Social Bookmarking RELOADED -n/a-3.18 - CSRF

CVE-2025-31392 HIGH

Shameem Reza Smart Product Gallery Slider <1.0.5 - CSRF

CVE-2025-31391 HIGH

Script Compressor <= 1.7.1 - Cross-Site Request Forgery to Stored Cross-Site Scripting

Previous Page 63 of 373 Next

Details

Vulnerabilities 9,322

Exploit Likelihood Medium

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy