Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-352 (跨站请求伪造(CSRF)) — Vulnerability Class 4754

4754 vulnerabilities classified as CWE-352 (跨站请求伪造(CSRF)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2023-26532 WordPress Social Auto Poster Plugin <= 2.1.4 is vulnerable to Cross Site Request Forgery (CSRF) — Social Auto Poster 5.4 Medium2023-11-22
CVE-2023-27457 WordPress Add Expires Headers & Optimized Minify Plugin <= 2.7 is vulnerable to Cross Site Request Forgery (CSRF) — Add Expires Headers & Optimized Minify 4.3 Medium2023-11-22
CVE-2023-27458 WordPress WpStream – Live Streaming, Video on Demand, Pay Per View Plugin <= 4.4.10 is vulnerable to Cross Site Request Forgery (CSRF) — WpStream 4.3 Medium2023-11-22
CVE-2023-27461 WordPress When Last Login Plugin <= 1.2.1 is vulnerable to Cross Site Request Forgery (CSRF) — When Last Login 4.3 Medium2023-11-22
CVE-2023-27453 WordPress LWS Tools Plugin <= 2.3.1 is vulnerable to Cross Site Request Forgery (CSRF) — LWS Tools 5.4 Medium2023-11-22
CVE-2023-27442 WordPress Leyka Plugin <= 3.29.2 is vulnerable to Cross Site Request Forgery (CSRF) — Leyka 5.4 Medium2023-11-22
CVE-2023-27444 WordPress DecaLog Plugin <= 3.7.0 is vulnerable to Cross Site Request Forgery (CSRF) — DecaLog 4.3 Medium2023-11-22
CVE-2023-27446 WordPress DeepL Pro API translation Plugin <= 2.1.4 is vulnerable to Cross Site Request Forgery (CSRF) — DeepL API translation plugin 4.3 Medium2023-11-22
CVE-2023-27633 WordPress Customify Plugin <= 2.10.4 is vulnerable to Cross Site Request Forgery (CSRF) — Customify – Intuitive Website Styling 4.3 Medium2023-11-22
CVE-2023-28747 WordPress CBX Currency Converter Plugin <= 3.0.3 is vulnerable to Cross Site Request Forgery (CSRF) — CBX Currency Converter 5.4 Medium2023-11-22
CVE-2023-28749 WordPress CM On Demand Search And Replace Plugin <= 1.3.0 is vulnerable to Cross Site Request Forgery (CSRF) — CM On Demand Search And Replace 4.3 Medium2023-11-22
CVE-2023-2447 UserPro <= 5.1.1 - Cross-Site Request Forgery to Sensitive Information Exposure — UserPro - Community and User Profile WordPress Plugin 6.1 Medium2023-11-22
CVE-2022-35638 IBM Sterling B2B Integrator cross-site request forgery — Sterling B2B Integrator 4.3 Medium2023-11-22
CVE-2023-5776 Post Meta Data Manager <= 1.2.1 - Cross-Site Request Forgery to Post, Term, and User Meta Deletion — Post Meta Data Manager 4.3 Medium2023-11-21
CVE-2023-48293 XWiki Admin Tools Application CSRF with QueryOnXWiki allows arbitrary database queries — application-admintools 8.8 High2023-11-20
CVE-2023-48292 XWiki Admin Tools Application Run Shell Command allows CSRF RCE attacks — application-admintools 9.7 Critical2023-11-20
CVE-2023-6197 Audio Merchant <= 5.0.4 - Cross-Site Request Forgery to Settings Modifcation and Stored Cross-Site Scripting — Audio Merchant 5.4 Medium2023-11-20
CVE-2023-6196 Audio Merchant <= 5.0.4 - Cross-Site Request Forgery to Arbitrary File Upload — Audio Merchant 8.8 High2023-11-20
CVE-2023-28780 WordPress Yoast SEO: Local Plugin <= 14.8 is vulnerable to Cross Site Request Forgery (CSRF) — Yoast Local Premium 6.5 Medium2023-11-18
CVE-2023-31075 WordPress Easy Hide Login Plugin <= 1.0.8 is vulnerable to Cross Site Request Forgery (CSRF) — Easy Hide Login 5.4 Medium2023-11-18
CVE-2023-31089 WordPress Video XML Sitemap Generator Plugin <= 1.0.0 is vulnerable to Cross Site Request Forgery (CSRF) — Video XML Sitemap Generator 4.3 Medium2023-11-18
CVE-2023-32245 WordPress Essential Addons for Elementor Pro Plugin <= 5.4.8 is vulnerable to Server Side Request Forgery (SSRF) — Essential Addons for Elementor Pro 5.4 Medium2023-11-18
CVE-2023-32504 WordPress Wise Chat Plugin <= 3.1.3 is vulnerable to Cross Site Request Forgery (CSRF) — Wise Chat 5.4 Medium2023-11-18
CVE-2023-32514 WordPress Google Site Verification plugin using Meta Tag Plugin <= 1.2 is vulnerable to Cross Site Request Forgery (CSRF) — Google Site Verification plugin using Meta Tag 5.4 Medium2023-11-18
CVE-2023-25985 WordPress WordPress Tooltips Plugin <= 8.2.5 is vulnerable to Cross Site Request Forgery (CSRF) — WordPress Tooltips 4.3 Medium2023-11-18
CVE-2023-41129 WordPress Patreon WordPress Plugin <= 1.8.6 is vulnerable to Cross Site Request Forgery (CSRF) — Patreon WordPress 4.3 Medium2023-11-18
CVE-2023-47243 WordPress MSHOP MY SITE Plugin <= 1.1.6 is vulnerable to Broken Access Control — 코드엠샵 마이사이트 – MSHOP MY SITE 5.4 Medium2023-11-18
CVE-2023-47519 WordPress WooCommerce Product Table Lite Plugin <= 2.6.2 is vulnerable to Cross Site Request Forgery (CSRF) — WooCommerce Product Table Lite 4.3 Medium2023-11-18
CVE-2023-47531 WordPress Droit Dark Mode Plugin <= 1.1.2 is vulnerable to Cross Site Request Forgery (CSRF) — Droit Dark Mode 4.3 Medium2023-11-18
CVE-2023-47551 WordPress Donations Made Easy – Smart Donations Plugin <= 4.0.12 is vulnerable to Cross Site Request Forgery (CSRF) — Donations Made Easy – Smart Donations 5.4 Medium2023-11-18

Vulnerabilities classified as CWE-352 (跨站请求伪造(CSRF)) represent 4754 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.