Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-352 (跨站请求伪造(CSRF)) — Vulnerability Class 4754

4754 vulnerabilities classified as CWE-352 (跨站请求伪造(CSRF)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2023-48781 WordPress MkRapel Regiones y Ciudades de Chile para WC Plugin <= 4.3.0 is vulnerable to Cross Site Request Forgery (CSRF) — MkRapel Regiones y Ciudades de Chile para WC 4.3 Medium2023-12-18
CVE-2023-48778 WordPress Product Size Chart For WooCommerce Plugin <= 1.1.5 is vulnerable to Cross Site Request Forgery (CSRF) — Product Size Chart For WooCommerce 5.4 Medium2023-12-18
CVE-2023-48773 WordPress WooCommerce Login Redirect Plugin <= 2.2.4 is vulnerable to Cross Site Request Forgery (CSRF) — WooCommerce Login Redirect 5.4 Medium2023-12-18
CVE-2023-48772 WordPress Prevent Landscape Rotation Plugin <= 2.0 is vulnerable to Cross Site Request Forgery (CSRF) — Prevent Landscape Rotation 5.4 Medium2023-12-18
CVE-2023-48769 WordPress Chat Bubble Plugin <= 2.3 is vulnerable to Cross Site Request Forgery (CSRF) — Chat Bubble – Floating Chat with Contact Chat Icons, Messages, Telegram, Email, SMS, Call me back 4.3 Medium2023-12-18
CVE-2023-48768 WordPress Quantity Plus Minus Button for WooCommerce by CodeAstrology Plugin <= 1.1.9 is vulnerable to Cross Site Request Forgery (CSRF) — Quantity Plus Minus Button for WooCommerce by CodeAstrology 4.3 Medium2023-12-18
CVE-2023-48766 WordPress SVGator – Add Animated SVG Easily Plugin <= 1.2.4 is vulnerable to Cross Site Request Forgery (CSRF) — SVGator – Add Animated SVG Easily 4.3 Medium2023-12-18
CVE-2023-46617 WordPress AdFoxly – Ad Manager, AdSense Ads & Ads.txt Plugin <= 1.8.5 is vulnerable to Cross Site Request Forgery (CSRF) — AdFoxly – Ad Manager, AdSense Ads & Ads.txt 5.4 Medium2023-12-18
CVE-2023-48762 WordPress JetElements For Elementor Plugin <= 2.6.13 is vulnerable to Cross Site Request Forgery (CSRF) — JetElements For Elementor 6.3 Medium2023-12-18
CVE-2023-48755 WordPress teachPress Plugin <= 9.0.4 is vulnerable to Cross Site Request Forgery (CSRF) — teachPress 4.3 Medium2023-12-18
CVE-2023-33214 WordPress Taggbox Plugin <= 3.1 is vulnerable to Cross Site Request Forgery (CSRF) — Tagbox – UGC Galleries, Social Media Widgets, User Reviews & Analytics 5.4 Medium2023-12-18
CVE-2023-47806 WordPress Disable User Login Plugin <= 1.3.7 is vulnerable to Cross Site Request Forgery (CSRF) — Disable User Login 5.4 Medium2023-12-18
CVE-2023-47789 WordPress WooCommerce Canada Post Shipping Plugin <= 2.8.3 is vulnerable to Cross Site Request Forgery (CSRF) — Canada Post Shipping Method 4.3 Medium2023-12-18
CVE-2023-47787 WordPress WooCommerce Bookings Plugin <= 2.0.3 is vulnerable to Cross Site Request Forgery (CSRF) — WooCommerce Bookings 4.3 Medium2023-12-18
CVE-2023-49840 WordPress Multi Currency For WooCommerce Plugin <= 1.5.5 is vulnerable to Cross Site Request Forgery (CSRF) — Multi Currency For WooCommerce 4.3 Medium2023-12-18
CVE-2023-49843 WordPress First Order Discount Woocommerce Plugin <= 1.21 is vulnerable to Cross Site Request Forgery (CSRF) — First Order Discount Woocommerce 5.4 Medium2023-12-18
CVE-2023-49844 WordPress WPPerformanceTester Plugin <= 2.0.0 is vulnerable to Cross Site Request Forgery (CSRF) — WPPerformanceTester 4.3 Medium2023-12-18
CVE-2023-49853 WordPress PayTR Taksit Tablosu Plugin <= 1.3.1 is vulnerable to Cross Site Request Forgery (CSRF) — PayTR Taksit Tablosu – WooCommerce 5.4 Medium2023-12-18
CVE-2023-49854 WordPress Caddy Plugin <= 1.9.7 is vulnerable to Cross Site Request Forgery (CSRF) — Caddy – Smart Side Cart for WooCommerce 5.4 Medium2023-12-18
CVE-2023-49855 WordPress BC Menu Bar Cart Icon For WooCommerce By Binary Carpenter Plugin <= 1.49.3 is vulnerable to Cross Site Request Forgery (CSRF) — Menu Bar Cart Icon For WooCommerce By Binary Carpenter 6.5 Medium2023-12-18
CVE-2023-50372 WordPress Custom Post Type Page Template Plugin <= 1.1 is vulnerable to Cross Site Request Forgery (CSRF) — Custom Post Type Page Template 4.3 Medium2023-12-18
CVE-2023-6904 Jahastech NxFilter config,admin.jsp cross-site request forgery — NxFilter 4.3 Medium2023-12-17
CVE-2023-49834 WordPress WOOCS – WooCommerce Currency Switcher Plugin <= 1.4.1.4 is vulnerable to Cross Site Request Forgery (CSRF) — FOX – Currency Switcher Professional for WooCommerce 5.4 Medium2023-12-17
CVE-2023-49824 WordPress Product Catalog Feed by PixelYourSite Plugin <= 2.1.1 is vulnerable to Cross Site Request Forgery (CSRF) — Product Catalog Feed by PixelYourSite 5.4 Medium2023-12-17
CVE-2023-49816 WordPress Fix My Feed RSS Repair Plugin <= 1.4 is vulnerable to Cross Site Request Forgery (CSRF) — Fix My Feed RSS Repair 4.3 Medium2023-12-17
CVE-2023-49775 WordPress CSV Importer Plugin <= 0.3.8 is vulnerable to Cross Site Request Forgery (CSRF) — CSV Importer 4.3 Medium2023-12-17
CVE-2023-49769 WordPress Integrate Google Drive Plugin <= 1.3.4 is vulnerable to Cross Site Request Forgery (CSRF) — Integrate Google Drive 4.3 Medium2023-12-17
CVE-2023-49751 WordPress Block for Font Awesome Plugin <= 1.4.0 is vulnerable to Cross Site Request Forgery (CSRF) — Block for Font Awesome 4.3 Medium2023-12-17
CVE-2023-24380 WordPress Simple Wp Sitemap Plugin <= 1.2.1 is vulnerable to Cross Site Request Forgery (CSRF) — Simple Wp Sitemap 4.3 Medium2023-12-17
CVE-2023-49749 WordPress SureTriggers Plugin <= 1.0.23 is vulnerable to Cross Site Request Forgery (CSRF) — SureTriggers – Connect All Your Plugins, Apps, Tools & Automate Everything! 4.3 Medium2023-12-15

Vulnerabilities classified as CWE-352 (跨站请求伪造(CSRF)) represent 4754 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.