CWE-352
Medium likelihoodCross-Site Request Forgery (CSRF)
The web application does not, or cannot, sufficiently verify whether a request was intentionally provided by the user who sent the request, which could have originated from an unauthorized actor.
9,346 vulnerabilities with CWE-352
CVE-2024-38732
MEDIUM
VolThemes Patricia Blog <= 1.2 - Cross-Site Request Forgery
CVSS 4.3
CVE-2024-38731
MEDIUM
Marsian i-amaze < 1.3.7 - Cross-Site Request Forgery
CVSS 4.3
CVE-2024-37931
MEDIUM
Creativthemes Point <= 1.1 - Cross-Site Request Forgery
CVSS 4.3
CVE-2024-37925
MEDIUM
BuddyBoss Theme < 2.4.61 - Cross-Site Request Forgery
CVSS 5.4
CVE-2024-37452
MEDIUM
Schema Lite < 1.2.2 - Cross-Site Request Forgery
CVSS 4.3
CVE-2024-37438
MEDIUM
Uncanny Owl Uncanny Toolkit Pro for LearnDash <4.1.4.1 - CSRF
CVSS 5.4
CVE-2024-37241
MEDIUM
Automattic WP Job Manager - Resume Manager <2.1.0 - CSRF
CVSS 4.3
CVE-2024-37237
MEDIUM
FS Poster <= 6.5.8 - Cross-Site Request Forgery
CVSS 4.3
CVE-2024-39623
HIGH
ListingPro <= 2.9.4 - Cross-Site Request Forgery to Account Takeover
CVSS 8.8
CVE-2024-38778
MEDIUM
Epsiloncool WP Fast Total Search - CSRF
CVSS 4.3
CVE-2024-38764
MEDIUM
Marsian i-transform < 3.0.9 - Cross-Site Request Forgery
CVSS 4.3
CVE-2024-56251
MEDIUM
Event Espresso <5.0.28.decaf - CSRF
CVSS 4.3
CVE-2024-43927
MEDIUM
Email Address Encoder <1.0.23 - CSRF
CVSS 4.3
CVE-2024-38790
MEDIUM
Smartsupp < 3.6 - Cross-Site Request Forgery
CVSS 6.5
CVE-2024-38789
MEDIUM
Marco Milesi Telegram Bot & Channel <3.8.2 - CSRF
CVSS 5.4
CVE-2024-38766
MEDIUM
Matomo Analytics <= 5.1.1 - Cross-Site Request Forgery Leading to Notice Dismissal
CVSS 4.3
CVE-2024-38765
MEDIUM
Oceanic <= 1.0.48 - Cross-Site Request Forgery
CVSS 4.3
CVE-2024-38763
MEDIUM
Popularis Verse <= 1.1.1 - Cross-Site Request Forgery
CVSS 4.3
CVE-2024-38762
MEDIUM
The Events Calendar Event Tickets <5.11.0.4 - CSRF
CVSS 4.3
CVE-2024-38754
MEDIUM
Taggbox < 3.3 - Cross-Site Request Forgery
CVSS 4.3
CVE-2024-38753
MEDIUM
Labib Ahmed Animated Rotating Words - CSRF
CVSS 4.3
CVE-2024-38751
MEDIUM
Magazine3 Google Adsense & Banner Ads <1.9.28 - CSRF
CVSS 4.3
CVE-2024-38729
MEDIUM
MBE eShip <= 2.1.2 - Cross-Site Request Forgery
CVSS 5.4
CVE-2024-38691
MEDIUM
Metorik - Reports & Email Automation for WooCommerce <= 1.7.1 - Cross-Site Request Forgery
CVSS 4.3
CVE-2024-37937
MEDIUM
Rara Business <= 1.2.5 - Cross-Site Request Forgery
CVSS 4.3
Details
Vulnerabilities
9,346
Exploit Likelihood
Medium