CWE-352 (跨站请求伪造(CSRF)) — Vulnerability Class 4754

4754 vulnerabilities classified as CWE-352 (跨站请求伪造(CSRF)). AI Chinese analysis included.

CVE ID	Title	CVSS	Severity	Published
CVE-2023-46634	WordPress Custom My Account for Woocommerce Plugin <= 2.1 is vulnerable to Cross Site Request Forgery (CSRF) — Custom My Account for Woocommerce	7.1	High	2023-11-13
CVE-2023-47516	WordPress Category Post List Widget Plugin <= 2.0 is vulnerable to Cross Site Scripting (XSS) — Category Post List Widget	7.1	High	2023-11-13
CVE-2023-47652	WordPress Auto Affiliate Links Plugin <= 6.4.2.4 is vulnerable to Cross Site Request Forgery (CSRF) — Auto Affiliate Links	7.1	High	2023-11-13
CVE-2023-35041	WordPress Webpushr Plugin <= 4.34.0 is vulnerable to Cross Site Request Forgery (CSRF) — Web Push Notifications – Webpushr	8.8	High	2023-11-13
CVE-2023-32583	WordPress WP All Backup Plugin <= 2.4.3 is vulnerable to Cross Site Request Forgery (CSRF) — WP All Backup	6.3	Medium	2023-11-13
CVE-2023-32588	WordPress Post State Tags Plugin <= 2.0.6 is vulnerable to Cross Site Request Forgery (CSRF) — Post State Tags	4.3	Medium	2023-11-13
CVE-2023-33207	WordPress Stop Referrer Spam Plugin <= 1.3.0 is vulnerable to Cross Site Request Forgery (CSRF) — Stop Referrer Spam	4.3	Medium	2023-11-13
CVE-2023-34378	WordPress WP Hide Post Plugin <= 2.0.10 is vulnerable to Cross Site Request Forgery (CSRF) — WP Hide Post	4.3	Medium	2023-11-13
CVE-2023-34384	WordPress Kebo Twitter Feed Plugin <= 1.5.12 is vulnerable to Cross Site Request Forgery (CSRF) — Kebo Twitter Feed	5.4	Medium	2023-11-13
CVE-2023-47669	WordPress Profile Builder Plugin <= 3.10.3 is vulnerable to Cross Site Request Forgery (CSRF) — User Profile Builder – Beautiful User Registration Forms, User Profiles & User Role Editor	5.4	Medium	2023-11-13
CVE-2023-46618	WordPress Category SEO Meta Tags Plugin <= 2.5 is vulnerable to Cross Site Request Forgery (CSRF) — Category SEO Meta Tags	4.3	Medium	2023-11-13
CVE-2023-46619	WordPress Spider Facebook Plugin <= 1.0.15 is vulnerable to Cross Site Request Forgery (CSRF) — WDSocialWidgets	5.4	Medium	2023-11-13
CVE-2023-46620	WordPress DeepL Pro API translation Plugin <= 2.3.9.1 is vulnerable to Cross Site Request Forgery (CSRF) — DeepL API translation plugin	4.3	Medium	2023-11-13
CVE-2023-46625	WordPress Autolinks Manager Plugin <= 1.10.04 is vulnerable to Cross Site Request Forgery (CSRF) — Autolinks Manager	4.3	Medium	2023-11-13
CVE-2023-46629	WordPress Remove Add to Cart WooCommerce Plugin <= 1.4.4 is vulnerable to Cross Site Request Forgery (CSRF) — Remove Add to Cart WooCommerce	4.3	Medium	2023-11-13
CVE-2023-46636	WordPress Custom Header Images Plugin <= 1.2.1 is vulnerable to Cross Site Request Forgery (CSRF) — Custom Header Images	5.4	Medium	2023-11-13
CVE-2023-46638	WordPress WCP OpenWeather Plugin <= 2.5.0 is vulnerable to Cross Site Request Forgery (CSRF) — WCP OpenWeather	4.3	Medium	2023-11-13
CVE-2023-47230	WordPress Contact Forms by Cimatti Plugin <= 1.6.0 is vulnerable to Cross Site Request Forgery (CSRF) — WordPress Contact Forms by Cimatti	5.4	Medium	2023-11-13
CVE-2023-26543	WordPress WP Meteor Page Speed Optimization Topping Plugin <= 3.1.4 is vulnerable to Cross Site Request Forgery (CSRF) — WP Meteor Website Speed Optimization Addon	4.3	Medium	2023-11-13
CVE-2023-26531	WordPress 多合一搜索自动推送管理插件-支持Baidu/Google/Bing/IndexNow/Yandex/头条 Plugin <= 4.2.7 is vulnerable to Cross Site Request Forgery (CSRF) — 多合一搜索自动推送管理插件-支持Baidu/Google/Bing/IndexNow/Yandex/头条	5.4	Medium	2023-11-12
CVE-2023-26524	WordPress Quiz And Survey Master Plugin <= 8.0.10 is vulnerable to Cross Site Request Forgery (CSRF) — Quiz And Survey Master – Best Quiz, Exam and Survey Plugin for WordPress	4.3	Medium	2023-11-12
CVE-2023-26516	WordPress Debug Assistant Plugin <= 1.4 is vulnerable to Cross Site Request Forgery (CSRF) — Debug Assistant	8.8	High	2023-11-12
CVE-2023-26518	WordPress WP TFeed Plugin <= 1.6.9 is vulnerable to Cross Site Request Forgery (CSRF) — WP TFeed	5.4	Medium	2023-11-12
CVE-2023-26514	WordPress XML Sitemap Generator for Google Plugin <= 1.3.3 is vulnerable to Cross Site Request Forgery (CSRF) — Dynamic XML Sitemaps Generator for Google	5.4	Medium	2023-11-12
CVE-2023-27445	WordPress Blog Floating Button Plugin <= 1.4.12 is vulnerable to Cross Site Request Forgery (CSRF) — Blog Floating Button	5.4	Medium	2023-11-12
CVE-2023-27441	WordPress New Adman Plugin <= 1.6.8 is vulnerable to Cross Site Request Forgery (CSRF) — New Adman	5.4	Medium	2023-11-12
CVE-2023-27438	WordPress WP Translitera Plugin <= p1.2.5 is vulnerable to Cross Site Request Forgery (CSRF) — WP Translitera	4.3	Medium	2023-11-12
CVE-2023-27434	WordPress Classic Editor and Classic Widgets Plugin <= 1.2.5 is vulnerable to Cross Site Request Forgery (CSRF) — Classic Editor and Classic Widgets	4.3	Medium	2023-11-12
CVE-2023-27436	WordPress Elegant Custom Fonts Plugin <= 1.0 is vulnerable to Cross Site Request Forgery (CSRF) — Elegant Custom Fonts	5.4	Medium	2023-11-12
CVE-2023-27431	WordPress Big Store Theme <= 1.9.3 is vulnerable to Cross Site Request Forgery (CSRF) — Big Store	4.3	Medium	2023-11-12

Vulnerabilities classified as CWE-352 (跨站请求伪造(CSRF)) represent 4754 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.

Goal Reached Thanks to every supporter — we hit 100%!

CWE-352 (跨站请求伪造(CSRF)) — Vulnerability Class 4754