Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-352

CWE-352

Medium likelihood

Cross-Site Request Forgery (CSRF)

Parent: CWE-345 - Insufficient Verification of Data Authenticity

The web application does not, or cannot, sufficiently verify whether a request was intentionally provided by the user who sent the request, which could have originated from an unauthorized actor.

9,328 vulnerabilities with CWE-352

CVE-2025-31776 MEDIUM

Aphotrax Uptime Robot Plugin <2.3 - CSRF

CVE-2025-31775 MEDIUM

Google SEO Pressor Snippet <= 2.0 - Cross-Site Request Forgery

CVE-2025-31769 MEDIUM

NiteoThemes CLP - Custom Login Page <1.5.5 - CSRF

CVE-2025-31763 MEDIUM

Preliot Cache control <5.4.1 - CSRF

CVE-2025-31756 MEDIUM

TZ PlusGallery <= 1.5.5 - Cross-Site Request Forgery

CVE-2025-31751 MEDIUM

Breaking News WP <= 1.3 - Cross-Site Request Forgery

CVE-2025-3037 MEDIUM

yzk2356911358 StudentServlet-JSP - CSRF

CVE-2025-31690 HIGH

Drupal Cache Utility < 1.2.1 - Cross-Site Request Forgery

CVE-2025-31689 HIGH

Drupal General Data Protection Regulation <3.0.1-3.1.2 - CSRF

CVE-2025-31688 MEDIUM

Drupal Configuration Split <2.0.2 - CSRF

CVE-2025-31684 MEDIUM

Drupal OAuth2 Client < 4.1.3 - Cross-Site Request Forgery

CVE-2025-31683 MEDIUM

Drupal Google Tag < 1.8.0 and 2.0.0-2.0.7 - Cross-Site Request Forgery

CVE-2025-31680 MEDIUM

Drupal Matomo Analytics <1.24.0 - CSRF

CVE-2025-31677 HIGH

Drupal AI <1.0.2 - CSRF

CVE-2025-29929 MEDIUM

Tuleap < 16.4-8 and < 16.5.99.1742306712 - Cross-Site Request Forgery in Tracker Hierarchy Administration

CVE-2025-29766 MEDIUM

Tuleap < 16.4-8 and < 16.5.99.1741784483 - Cross-Site Request Forgery in Tracker Artifact Submission

CVE-2025-31623 HIGH

Rich Text Editor <= 1.0.1 - Cross-Site Request Forgery to Stored Cross-Site Scripting

CVE-2025-31617 HIGH

PostmarkApp Email Integrator - CSRF

CVE-2025-31616 HIGH

AdminGeekZ Varnish WordPress <= 1.7 - Cross-Site Request Forgery

CVE-2025-31613 HIGH

AB Google Map Travel <= 4.6 - Cross-Site Request Forgery

CVE-2025-31602 MEDIUM

Apimo Connector <= 2.6.5.1 - Cross-Site Request Forgery

CVE-2025-31601 MEDIUM

Appointy Appointment Scheduler <4.2.1 - CSRF

CVE-2025-31600 MEDIUM

DesignO <= 2.6.0 - Cross-Site Request Forgery

CVE-2025-31588 MEDIUM

Elfsight Testimonials Slider <1.0.1 - CSRF

CVE-2025-31585 HIGH

Leadfox for WordPress <2.1.8 - CSRF

Previous Page 67 of 374 Next

Details

Vulnerabilities 9,328

Exploit Likelihood Medium

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy