Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-352

CWE-352

Medium likelihood

Cross-Site Request Forgery (CSRF)

Parent: CWE-345 - Insufficient Verification of Data Authenticity

The web application does not, or cannot, sufficiently verify whether a request was intentionally provided by the user who sent the request, which could have originated from an unauthorized actor.

9,337 vulnerabilities with CWE-352

CVE-2025-26931 HIGH

Tribulant Gallery Voting <1.2.1 - CSRF

CVE-2025-26926 MEDIUM

Booknetic <= 4.0.9 - Cross-Site Request Forgery

CVE-2025-1644 MEDIUM

Benner ModernaNet < 1.2.1 - Cross-Site Request Forgery via idItAg Argument

CVE-2025-1643 MEDIUM

Benner ModernaNet < 1.1.1 - Cross-Site Request Forgery in /DadosPessoais/SG_AlterarSenha

CVE-2025-27357 MEDIUM

Musa AVCI Önceki Yazı Link <=1.3 - CSRF

CVE-2025-27355 HIGH

WooCommerce - Loi Hamon <1.1.0 - CSRF

CVE-2025-27353 MEDIUM

Namaste! LMS <= 2.6.5 - Cross-Site Request Forgery

CVE-2025-27344 MEDIUM

Phee's LinkPreview <= 1.6.7 - Cross-Site Request Forgery

CVE-2025-27342 MEDIUM

josesan WooCommerce Recargo de Equivalencia <1.6.24 - CSRF

CVE-2025-27340 MEDIUM

F12-Profiler <= 1.3.9 - Cross-Site Request Forgery

CVE-2025-27339 MEDIUM

Will Anderson Minimum Password Strength - CSRF

CVE-2025-27336 MEDIUM

Alex Prokopenko/JustCoded Just Variables - CSRF

CVE-2025-27335 MEDIUM

Auto Tag Links <= 1.0.13 - Cross-Site Request Forgery

CVE-2025-27332 HIGH

gmnazmul Smart Maintenance & Countdown <1.2 - CSRF

CVE-2025-27328 MEDIUM

queeez WP-PostRatings Cheater - CSRF

CVE-2025-27321 HIGH

Blightly Explorer <= 2.3.0 - Cross-Site Request Forgery to Stored Cross-Site Scripting

CVE-2025-27318 MEDIUM

ixiter Simple Google Sitemap - CSRF

CVE-2025-27317 MEDIUM

IT-RAYS RAYS Grid <= 1.3.1 - Cross-Site Request Forgery

CVE-2025-27316 MEDIUM

hosting.io JPG/PNG Compression & Optimization <1.7.35 - CSRF

CVE-2025-27315 MEDIUM

wptom All-In-One Cufon <1.3.0 - CSRF

CVE-2025-27311 MEDIUM

Bulk Content Creator <= 1.2.1 - Cross-Site Request Forgery

CVE-2025-27298 HIGH

WP Video Posts <3.5.1 - CSRF, Code Injection

CVE-2025-27290 MEDIUM

Erima Zarinpal Donate <= 1.0 - Cross-Site Request Forgery

CVE-2025-27277 HIGH

tiefpunkt Add Linked Images To Gallery <1.4 - CSRF

CVE-2025-27276 HIGH

lizeipe Photo Gallery <4.0 - CSRF/Privilege Escalation

Previous Page 76 of 374 Next

Details

Vulnerabilities 9,337

Exploit Likelihood Medium

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy