CWE-352
Medium likelihoodCross-Site Request Forgery (CSRF)
The web application does not, or cannot, sufficiently verify whether a request was intentionally provided by the user who sent the request, which could have originated from an unauthorized actor.
9,119 vulnerabilities with CWE-352
CVE-2026-1072
MEDIUM
Keybase.io Verification Plugin <1.4.5 - CSRF
CVSS 4.3
CVE-2026-1394
MEDIUM
WP Quick Contact Us <1.0 - CSRF
CVSS 4.3
CVE-2026-1983
MEDIUM
SEATT: Simple Event Attendance <1.5.0 - CSRF
CVSS 4.3
CVE-2026-26075
MEDIUM
FastGPT <4.14.6 - Info Disclosure
CVSS 5.4
CVE-2026-2317
MEDIUM
Google Chrome <145.0.7632.45 - Info Disclosure
CVSS 6.5
CVE-2026-1215
MEDIUM
MMA Call Tracking <2.3.15 - CSRF
CVSS 4.3
CVE-2026-24885
MEDIUM
Kanboard < 1.2.50 - CSRF
CVSS 5.7
CVE-2026-25812
HIGH
PlaciPy 1.0.0 - CSRF
CVSS 8.8
CVE-2026-1082
MEDIUM
TITLE ANIMATOR <1.0 - CSRF
CVSS 4.3
CVE-2026-1785
MEDIUM
WordPress Code Snippets <3.9.4 - CSRF
CVSS 4.3
CVE-2026-1835
MEDIUM
lcg0124 BootDo <e93dd428ef6f5c881aa74d49a2099ab0cf1e0fcb - CSRF
CVSS 4.3
CVE-2026-25155
MEDIUM
Qwik < 1.12.0 - CSRF
CVSS 5.9
CVE-2026-25151
MEDIUM
Qwik < 1.19.0 - CSRF
CVSS 5.9
CVE-2026-24434
MEDIUM
Shenzhen Tenda AC7 <V03.03.03.01_cn - CSRF
CVSS 6.5
CVE-2026-24666
MEDIUM
Open eClass <4.2 - CSRF
CVSS 6.5
CVE-2026-25024
MEDIUM
ThirstyAffiliates <4 - CSRF
CVSS 5.4
CVE-2026-25015
MEDIUM
Stiofan UsersWP <1.2.53 - CSRF
CVSS 4.3
CVE-2026-25014
MEDIUM
Enter Addons <2.3.2 - CSRF
CVSS 4.3
CVE-2026-24986
MEDIUM
Simple Membership WP user Import <= 1.9.1 - CSRF
CVSS 5.4
CVE-2026-24966
MEDIUM
Copyscape Premium - CSRF
CVSS 4.3
CVE-2026-24962
MEDIUM
Brainstorm Force Sigmize <0.0.10 - CSRF
CVSS 4.3
CVE-2026-24942
MEDIUM
WpEvently <5.1.1 - CSRF
CVSS 4.3
CVE-2026-20704
MEDIUM
WRC-X1500GS-B/WRC-X1500GSA-B - CSRF
CVSS 4.3
CVE-2026-1447
MEDIUM
Mail Mint <1.19.2 - CSRF
CVSS 5.4
CVE-2026-25221
HIGH
PolarLearn <0-PRERELEASE-15 - CSRF
CVSS 8.1
Details
Vulnerabilities
9,119
Exploit Likelihood
Medium