Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-352

CWE-352

Medium likelihood

Cross-Site Request Forgery (CSRF)

Parent: CWE-345 - Insufficient Verification of Data Authenticity

The web application does not, or cannot, sufficiently verify whether a request was intentionally provided by the user who sent the request, which could have originated from an unauthorized actor.

9,347 vulnerabilities with CWE-352

CVE-2024-54436 HIGH

Jettochkin Jet Footer Code - Stored XSS

CVE-2024-54435 HIGH

Thomas Hoefter Onlywire Multi Autosubmitter <1.2.4 - CSRF

CVE-2024-54434 HIGH

phZoom <= 1.2.92 - Cross-Site Request Forgery to Stored Cross-Site Scripting

CVE-2024-54433 HIGH

Simple Booking Widget <= 1.1 - Cross-Site Request Forgery to Stored Cross-Site Scripting

CVE-2024-54432 HIGH

WP Flipkart Importer <= 1.4 - Cross-Site Request Forgery to Stored Cross-Site Scripting

CVE-2024-54431 HIGH

Mohamed Riyaz Admin Customization <2.2 - CSRF

CVE-2024-54430 MEDIUM

EELV Newsletter <= 4.8.2 - Cross-Site Request Forgery

CVE-2024-54429 HIGH

Aphorismus <= 1.2.0 - Cross-Site Request Forgery to Stored Cross-Site Scripting

CVE-2024-54428 HIGH

Add image to Post <= 0.6 - Cross-Site Request Forgery to Stored Cross-Site Scripting

CVE-2024-54427 HIGH

Linda MacPhee-Cobb Category of Posts <1.0 - CSRF

CVE-2024-54426 HIGH

Andy Fradelakis LeaderBoard Plugin <1.2.4 - CSRF

CVE-2024-54425 HIGH

LionScripts Site Maintenance Plugin <= 2.1 - CSRF to Stored XSS

CVE-2024-54423 HIGH

Jesse Overright Social Media Sharing <1.1 - CSRF

CVE-2024-54421 HIGH

Sanjay Singh Negi Floating Video Player - XSS

CVE-2024-54420 HIGH

Aleksander Novikov Metrika <= 1.2 - Cross-Site Request Forgery

CVE-2024-54419 MEDIUM

Mansur Ahamed Ui Slider Filter By Price - CSRF

CVE-2024-54418 MEDIUM

DTC Documents <= 1.1.05 - Cross-Site Request Forgery

CVE-2024-54416 HIGH

Navdeep Kumar Wp Login with Ajax <0.7 - CSRF

CVE-2024-54415 HIGH

WP-HideThat <= 1.2 - Cross-Site Request Forgery to Stored Cross-Site Scripting

CVE-2024-54414 HIGH

geoWP Geoportail Shortcode <2.4.4 - CSRF

CVE-2024-54413 HIGH

Stefan Brandt Display Future Posts <0.2.3 - CSRF

CVE-2024-54412 HIGH

Ecommerce Templates ECT Product Carousel <1.9 - XSS

CVE-2024-54411 HIGH

hosting.io, campaigns.io WP Controller <3.2.0 - CSRF

CVE-2024-54410 HIGH

SOPA Blackout <= 1.4 - Cross-Site Request Forgery to Stored Cross-Site Scripting

CVE-2024-54409 HIGH

XPD Reduce Image Filesize - Stored XSS

Previous Page 99 of 374 Next

Details

Vulnerabilities 9,347

Exploit Likelihood Medium

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy