Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-352

CWE-352

Medium likelihood

Cross-Site Request Forgery (CSRF)

Parent: CWE-345 - Insufficient Verification of Data Authenticity

The web application does not, or cannot, sufficiently verify whether a request was intentionally provided by the user who sent the request, which could have originated from an unauthorized actor.

9,322 vulnerabilities with CWE-352

CVE-2025-31390 HIGH

Social Crowd <= 0.9.6.1 - Cross-Site Request Forgery to Stored Cross-Site Scripting

CVE-2025-31388 HIGH

The World <= 0.4 - Cross-Site Request Forgery to Stored Cross-Site Scripting

CVE-2025-31385 HIGH

Site Table of Contents <= 0.3 - Cross-Site Request Forgery to Stored Cross-Site Scripting

CVE-2025-31383 HIGH

FrescoChat Live Chat <= 3.2.6 - Cross-Site Request Forgery to Stored Cross-Site Scripting

CVE-2025-31382 HIGH

theode Language Field <= 0.9 - Cross-Site Request Forgery to Stored Cross-Site Scripting

CVE-2025-31375 HIGH

bhoogterp Scheduled <= 1.0 - Cross-Site Request Forgery to Stored Cross-Site Scripting

CVE-2025-31038 HIGH

Essential Breadcrumbs <1.1.1 - CSRF/Privilege Escalation

CVE-2025-31036 HIGH

WPSolr <24.0 - CSRF/Privilege Escalation

CVE-2025-31034 MEDIUM

AboZain Albanna Customize Login Page - CSRF

CVE-2025-31033 CRITICAL

Buddypress Humanity <= 1.2 - Cross-Site Request Forgery

CVE-2025-31032 HIGH

Pagopar WooCommerce Gateway <2.7.1 - CSRF

CVE-2025-31026 HIGH

Comment Validation Reloaded <0.5 - CSRF

CVE-2025-31023 HIGH

Purab Seo Meta Tags <= 1.4 - Cross-Site Request Forgery

CVE-2025-31005 MEDIUM

Easyfonts <= 1.1.2 - Cross-Site Request Forgery

CVE-2025-25056 MEDIUM

Inaba Denki Sangyo AC-WPS-11ac series < 2.0.03P - Cross-Site Request Forgery

CVE-2025-27189 MEDIUM

Adobe Commerce < 2.4.8-beta2 - Cross-Site Request Forgery

CVE-2025-3064 HIGH

WPFront User Role Editor <4.2.1 - CSRF

CVE-2025-0810 HIGH

Read More & Accordion plugin <3.4.5 - CSRF

CVE-2025-3257 MEDIUM

xujiangfei admintwo 1.0 - Cross-Site Request Forgery via /user/updateSet

CVE-2025-32280 MEDIUM

WP Project Manager < 2.6.25 - Cross-Site Request Forgery

CVE-2025-32278 MEDIUM

Table Block by RioVizual <= 2.3.1 - Cross-Site Request Forgery

CVE-2025-32276 MEDIUM

Administrator Z <=2025.03.04 - CSRF

CVE-2025-32274 MEDIUM

WP w3all phpBB <= 2.9.8 - Cross-Site Request Forgery

CVE-2025-32273 MEDIUM

Freetobook Responsive Widget - CSRF

CVE-2025-32272 MEDIUM

PickPlugins Wishlist <1.0.44 - CSRF

Previous Page 64 of 373 Next

Details

Vulnerabilities 9,322

Exploit Likelihood Medium

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy