Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-352

CWE-352

Medium likelihood

Cross-Site Request Forgery (CSRF)

Parent: CWE-345 - Insufficient Verification of Data Authenticity

The web application does not, or cannot, sufficiently verify whether a request was intentionally provided by the user who sent the request, which could have originated from an unauthorized actor.

9,328 vulnerabilities with CWE-352

CVE-2025-31583 HIGH

Ashish Ajani WP Copy Media URL -n/a-2.1 - XSS

CVE-2025-31572 MEDIUM

Multi Days Events and Multi Events in One Day Calendar <1.1.3 - CSRF

CVE-2025-31570 HIGH

wp-buy Related Posts Widget with Thumbnails <1.2 - CSRF/XSS

CVE-2025-31569 HIGH

WordPress Related Posts with Thumbnails < 3.0.0.1 - Cross-Site Request Forgery to Stored Cross-Site Scripting

CVE-2025-31566 HIGH

Rio Video Gallery <= 2.3.6 - Cross-Site Request Forgery to Stored Cross-Site Scripting

CVE-2025-31410 MEDIUM

Ashish Ajani WP Church Donation - CSRF

CVE-2025-31010 MEDIUM

ReichertBrothers SimplyRETS Real Estate IDX - CSRF

CVE-2025-2863 HIGH

saTECH BCU Firmware 2.1.3 - Cross-Site Request Forgery

CVE-2025-31474 MEDIUM

WP Database Optimizer <1.2.1.3 - CSRF

CVE-2025-31460 HIGH

OmniLeads Scripts and Tags Manager <1.4 - CSRF

CVE-2025-31459 HIGH

PasqualePuzio Login Alert <0.2.1 - XSS

CVE-2025-31458 HIGH

Forsgren Video Embedder <1.7.1 - CSRF

CVE-2025-31457 MEDIUM

LWS SMS <= 2.4.1 - Cross-Site Request Forgery

CVE-2025-31456 MEDIUM

bsndev Ultimate Security Checker <4.2 - CSRF

CVE-2025-31449 HIGH

EricH The Visitor Counter <1.4.3 - CSRF

CVE-2025-31448 MEDIUM

misteraon Simple Trackback Disabler - CSRF

CVE-2025-31447 MEDIUM

NertWorks All in One Social Share Tools - CSRF

CVE-2025-31444 HIGH

youtag ShowTime Slideshow <1.6 - XSS

CVE-2025-31443 HIGH

KK I Like It <= 1.7.5.3 - Cross-Site Request Forgery to Stored Cross-Site Scripting

CVE-2025-31440 HIGH

Strategy11 Team Terms of Use <2.0 - CSRF

CVE-2025-31439 MEDIUM

tobias_ MerZ Browser Caching <n/a - CSRF

CVE-2025-31438 MEDIUM

WP Supersized <= 3.1.6 - Cross-Site Request Forgery

CVE-2025-31435 HIGH

Efficient Scripts Microblog Poster <2.1.6 - CSRF

CVE-2025-31079 MEDIUM

Usermaven <= 1.2.1 - Cross-Site Request Forgery

CVE-2025-1762 MEDIUM

Event Tickets with Ticket Scanner < 2.5.4 - Cross-Site Request Forgery in Settings Update

Previous Page 68 of 374 Next

Details

Vulnerabilities 9,328

Exploit Likelihood Medium

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy