Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-352

CWE-352

Medium likelihood

Cross-Site Request Forgery (CSRF)

Parent: CWE-345 - Insufficient Verification of Data Authenticity

The web application does not, or cannot, sufficiently verify whether a request was intentionally provided by the user who sent the request, which could have originated from an unauthorized actor.

9,336 vulnerabilities with CWE-352

CVE-2025-30842 MEDIUM

Christmas Panda <= 1.0.4 - Cross-Site Request Forgery

CVE-2025-30833 MEDIUM

Verge3D <= 4.8.2 - Cross-Site Request Forgery

CVE-2025-30823 MEDIUM

Boone Gorges Anthologize <0.8.2 - CSRF

CVE-2025-30822 MEDIUM

Hakik Zaman Custom Login Logo <1.1.7 - CSRF

CVE-2025-30816 MEDIUM

Nks publish post email notification <1.0.2.3 - CSRF

CVE-2025-30815 MEDIUM

Hesabfa Accounting <= 2.1.8 - Cross-Site Request Forgery

CVE-2025-30811 MEDIUM

Javier Revilla ValidateCertify - CSRF

CVE-2025-30805 MEDIUM

wpdesk Flexible Cookies <1.1.8 - CSRF

CVE-2025-30804 MEDIUM

maennchen1.de wpShopGermany IT-RECHT KANZLEI - CSRF

CVE-2025-30801 MEDIUM

TWB Woocommerce Reviews <1.7.7 - CSRF

CVE-2025-30788 HIGH

Eli EZ SQL Reports <5.25.08 - CSRF/SQL Injection

CVE-2025-30787 HIGH

EZ SQL Reports Shortcode Widget and DB Backup <= 5.25.08 - Cross-Site Request Forgery to Stored Cross-Site Scripting

CVE-2025-30783 HIGH

WP Google Review Slider <16.0 - CSRF

CVE-2025-30769 HIGH

WIP WooCarousel Lite <= 1.1.7 - Cross-Site Request Forgery to Stored Cross-Site Scripting

CVE-2025-30764 MEDIUM

AntoineH Football Pool <2.12.2 - CSRF

CVE-2025-2832 MEDIUM

mingyuefusu tushuguanlixitong - Cross-Site Request Forgery

CVE-2025-20228 MEDIUM

Splunk <9.3.3, <9.2.5, <9.1.8 - CSRF

CVE-2025-2319 HIGH

WordPress EZ SQL Reports <5.25.08 - CSRF

CVE-2025-1320 MEDIUM

teachPress <= 9.0.9 - Cross-Site Request Forgery via Import Page

CVE-2025-1798 MEDIUM

Italia Design Comuni Italia <= 1.1.2 - Stored Cross-Site Scripting

CVE-2025-30621 HIGH

kornelly Translator <= 0.3 - Cross-Site Request Forgery to Stored Cross-Site Scripting

CVE-2025-30620 HIGH

coderscom WP Odoo Form Integrator <1.1.0 - CSRF

CVE-2025-30619 MEDIUM

SpeakPipe <= 0.2 - Cross-Site Request Forgery

CVE-2025-30617 MEDIUM

Rewrite <= 0.2.1 - Cross-Site Request Forgery

CVE-2025-30615 CRITICAL

WP e-Commerce Style Email <0.6.2 - CSRF

Previous Page 70 of 374 Next

Details

Vulnerabilities 9,336

Exploit Likelihood Medium

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy