Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-352 (跨站请求伪造(CSRF)) — Vulnerability Class 4754

4754 vulnerabilities classified as CWE-352 (跨站请求伪造(CSRF)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2023-49744 WordPress Gift Up Gift Cards for WordPress and WooCommerce Plugin <= 2.21.3 is vulnerable to Cross Site Request Forgery (CSRF) — Gift Up Gift Cards for WordPress and WooCommerce 5.4 Medium2023-12-15
CVE-2023-49197 WordPress DoFollow Case by Case Plugin <= 3.4.2 is vulnerable to Cross Site Request Forgery (CSRF) — DoFollow Case by Case 4.3 Medium2023-12-15
CVE-2023-50870 JetBrains TeamCity 跨站请求伪造漏洞 — TeamCity 4.3 Medium2023-12-15
CVE-2023-6766 PHPGurukul Teacher Subject Allocation Management System Delete Course course.php cross-site request forgery — Teacher Subject Allocation Management System 4.3 Medium2023-12-13
CVE-2022-27488 Fortinet FortiVoice 安全漏洞 — FortiVoice 7.5 High2023-12-13
CVE-2023-45316 Reflected client side path traversal leading to CSRF in Playbooks — Mattermost 7.3 High2023-12-12
CVE-2023-6671 Cross-Site Request Forgery on OPEN JOURNAL SYSTEMS — OPEN JOURNAL SYSTEMS 6.3 Medium2023-12-11
CVE-2023-6653 PHPGurukul Teacher Subject Allocation Management System Create a new Subject subject.php cross-site request forgery — Teacher Subject Allocation Management System 4.3 Medium2023-12-10
CVE-2023-5756 Digital Publications by Supsystic <= 1.7.6 - Cross-Site Request Forgery via AJAX action — WordPress Flipbook by Supsystic 5.4 Medium2023-12-09
CVE-2023-6474 PHPGurukul Nipah Virus Testing Management System manage-phlebotomist.php cross-site request forgery — Nipah Virus Testing Management System 4.3 Medium2023-12-02
CVE-2023-38268 IBM InfoSphere Information Server cross-site request forgery — InfoSphere Information Server 4.3 Medium2023-12-01
CVE-2023-47870 WordPress wpForo Forum Plugin <= 2.2.6 is vulnerable to Broken Access Control and Cross Site Request Forgery (CSRF) — wpForo Forum 7.1 Medium2023-11-30
CVE-2023-47875 WordPress Perfmatters Plugin <= 2.1.6 is vulnerable to Cross Site Request Forgery (CSRF) — Perfmatters 5.4 Medium2023-11-30
CVE-2023-48278 WordPress WP Forms Puzzle Captcha Plugin <= 4.1 is vulnerable to Cross Site Request Forgery (CSRF) leading to XSS — WP Forms Puzzle Captcha 7.1 High2023-11-30
CVE-2023-48328 WordPress NextGEN Gallery Plugin <= 3.37 is vulnerable to Cross Site Request Forgery (CSRF) — WordPress Gallery Plugin – NextGEN Gallery 4.3 Medium2023-11-30
CVE-2023-48754 WordPress Delete Post Revisions In WordPress Plugin <= 4.6 is vulnerable to Cross Site Request Forgery (CSRF) — Delete Post Revisions In WordPress 5.4 Medium2023-11-30
CVE-2023-5803 WordPress Business Directory Plugin Plugin <= 6.3.10 is vulnerable to Cross Site Request Forgery (CSRF) — Business Directory Plugin – Easy Listing Directories for WordPress 4.3 Medium2023-11-30
CVE-2023-33333 WordPress Complianz and Complianz Premium plugins - Cross-Site Request Forgery (CSRF) leading to Cross-Site Scripting (XSS) — Complianz 7.1 High2023-11-30
CVE-2023-34030 WordPress Complianz and Complianz Premium plugins - Cross Site Request Forgery (CSRF) — Complianz 6.5 Medium2023-11-30
CVE-2023-36682 WordPress Schema Pro Plugin <= 2.7.7 is vulnerable to Cross Site Request Forgery (CSRF) — Schema Pro 7.1 High2023-11-30
CVE-2023-36685 WordPress CartFlows Pro Plugin <= 1.11.12 is vulnerable to Cross Site Request Forgery (CSRF) — CartFlows Pro 4.3 Medium2023-11-30
CVE-2023-47645 WordPress RegistrationMagic Plugin <= 5.2.2.6 is vulnerable to Cross Site Request Forgery (CSRF) — RegistrationMagic – Custom Registration Forms, User Registration, Payment, and User Login 4.3 Medium2023-11-30
CVE-2023-48279 WordPress Seraphinite Post .DOCX Source Plugin <= 2.16.6 is vulnerable to Cross Site Request Forgery (CSRF) — Seraphinite Post .DOCX Source 4.3 Medium2023-11-30
CVE-2023-48281 WordPress Broken Link Checker for YouTube Plugin <= 1.3 is vulnerable to Cross Site Request Forgery (CSRF) — Broken Link Checker for YouTube 4.3 Medium2023-11-30
CVE-2023-48282 WordPress Taxonomy filter Plugin <= 2.2.9 is vulnerable to Cross Site Request Forgery (CSRF) — Taxonomy filter 5.4 Medium2023-11-30
CVE-2023-48283 WordPress Simple Testimonials Showcase Plugin <= 1.1.5 is vulnerable to Cross Site Request Forgery (CSRF) — Simple Testimonials Showcase 4.3 Medium2023-11-30
CVE-2023-48284 WordPress Decorator – WooCommerce Email Customizer Plugin <= 1.2.7 is vulnerable to Cross Site Request Forgery (CSRF) — Decorator – WooCommerce Email Customizer 4.3 Medium2023-11-30
CVE-2023-48323 WordPress Awesome Support Plugin <= 6.1.4 is vulnerable to Cross Site Request Forgery (CSRF) — Awesome Support – WordPress HelpDesk & Support Plugin 4.3 Medium2023-11-30
CVE-2023-48330 WordPress Bulk Comment Remove Plugin <= 2 is vulnerable to Cross Site Request Forgery (CSRF) — Bulk Comment Remove 5.4 Medium2023-11-30
CVE-2023-48331 WordPress MyBookTable Bookstore Plugin <= 3.3.4 is vulnerable to Cross Site Request Forgery (CSRF) — MyBookTable Bookstore by Stormhill Media 4.3 Medium2023-11-30

Vulnerabilities classified as CWE-352 (跨站请求伪造(CSRF)) represent 4754 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.