Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-352 (跨站请求伪造(CSRF)) — Vulnerability Class 4754

4754 vulnerabilities classified as CWE-352 (跨站请求伪造(CSRF)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2023-2830 WordPress WP Testimonials Plugin <= 1.4.2 is vulnerable to Cross Site Request Forgery (CSRF) — WP Testimonials 5.4 Medium2023-10-03
CVE-2023-39989 WordPress Header Footer Code Manager Plugin <= 1.1.34 is vulnerable to Cross Site Request Forgery (CSRF) — Header Footer Code Manager 5.4 Medium2023-10-03
CVE-2023-39917 WordPress Photo Gallery by Ays Plugin <= 5.2.6 is vulnerable to Cross Site Request Forgery (CSRF) — Photo Gallery by Ays – Responsive Image Gallery 4.3 Medium2023-10-03
CVE-2023-39165 WordPress Sign-up Sheets Plugin <= 2.2.8 is vulnerable to Cross Site Request Forgery (CSRF) — Sign-up Sheets 5.4 Medium2023-10-03
CVE-2023-39923 WordPress The Post Grid Plugin <= 7.2.7 is vulnerable to Cross Site Request Forgery (CSRF) — The Post Grid 5.4 Medium2023-10-03
CVE-2023-25989 Cross-Site Request Forgery (CSRF) vulnerability in multiple WordPress plugins by Meks — Meks Video Importer 4.3 Medium2023-10-03
CVE-2023-24518 Disabling the administrator's account through cross-site request forgery — Pandora FMS 6.7 Medium2023-10-03
CVE-2023-25463 WordPress wp tell a friend popup form Plugin <= 7.1 is vulnerable to Cross Site Request Forgery (CSRF) — WP tell a friend popup form 5.4 Medium2023-10-03
CVE-2023-38390 WordPress Mobile Address Bar Changer Plugin <= 3.0 is vulnerable to Cross Site Request Forgery (CSRF) — Mobile Address Bar Changer 4.3 Medium2023-10-03
CVE-2023-38396 WordPress Google Map Shortcode Plugin <= 3.1.2 is vulnerable to Cross Site Request Forgery (CSRF) — google-map-shortcode 5.4 Medium2023-10-03
CVE-2023-37990 WordPress Perelink Pro Plugin <= 2.1.4 is vulnerable to Cross Site Request Forgery (CSRF) — Perelink Pro 4.3 Medium2023-10-03
CVE-2023-38398 WordPress Taboola Plugin <= 2.0.1 is vulnerable to Cross Site Request Forgery (CSRF) — Taboola 4.3 Medium2023-10-03
CVE-2022-46841 WordPress Oxygen Builder Plugin < 4.4 is vulnerable to Cross Site Request Forgery (CSRF) — Oxygen Builder 5.4 Medium2023-10-03
CVE-2023-38381 WordPress WP-FlyBox Plugin <= 6.46 is vulnerable to Cross Site Request Forgery (CSRF) — WP-FlyBox 5.4 Medium2023-10-03
CVE-2023-37998 WordPress Disabler Plugin <= 3.0.3 is vulnerable to Cross Site Request Forgery (CSRF) — Disabler 4.3 Medium2023-10-03
CVE-2023-37996 WordPress GTmetrix for WordPress Plugin <= 0.4.7 is vulnerable to Cross Site Request Forgery (CSRF) — GTmetrix for WordPress 5.4 Medium2023-10-03
CVE-2023-37992 WordPress Smarty for WordPress Plugin <= 3.1.35 is vulnerable to Cross Site Request Forgery (CSRF) — Smarty for WordPress 5.4 Medium2023-10-03
CVE-2023-37991 WordPress WP Emoji One Plugin <= 0.6.0 is vulnerable to Cross Site Request Forgery (CSRF) — WP Emoji One 4.3 Medium2023-10-03
CVE-2023-37891 WordPress Exit Popups & Onsite Retargeting by OptiMonk Plugin <= 2.0.4 is vulnerable to Cross Site Request Forgery (CSRF) — OptiMonk: Popups, Personalization & A/B Testing 4.3 Medium2023-10-03
CVE-2023-4659 Cross-Site Request Forgery in Free5Gc — Open5Gc 9.8 Critical2023-10-02
CVE-2023-40048 WS_FTP Server Cross-Site Request Forgery (CSRF) Vulnerability — WS_FTP Server 6.8 Medium2023-09-27
CVE-2023-44161 Acronis Cyber Protect 安全漏洞 — Acronis Cyber Protect 15 8.1 -2023-09-27
CVE-2023-44160 Acronis Cyber Protect 安全漏洞 — Acronis Cyber Protect 15 8.1 -2023-09-27
CVE-2023-2508 CSRF in PaperCutNG Mobility Print leads to sophisticated phishing — Mobility Print 5.3 Medium2023-09-20
CVE-2022-47559 Cross-Site Request Forgery in Ormazabal products — ekorCCP 8.6 High2023-09-19
CVE-2023-39446 Socomec MOD3GP-SY-120K Cross-Site Request Forgery — MODULYS GP (MOD3GP-SY-120K) 8.9 High2023-09-18
CVE-2023-5036 Cross-Site Request Forgery (CSRF) in usememos/memos — usememos/memos 6.5 -2023-09-18
CVE-2023-4959 Quay: cross-site request forgery (csrf) on config-editor page — Red Hat Quay 3 6.5 Medium2023-09-15
CVE-2023-4916 Login with phone number <= 1.5.6 - Cross-Site Request Forgery to User Password Change — OTP Login With Phone Number, OTP Verification 8.8 High2023-09-13
CVE-2023-4869 SourceCodester Contact Manager App update.php cross-site request forgery — Contact Manager App 4.3 Medium2023-09-10

Vulnerabilities classified as CWE-352 (跨站请求伪造(CSRF)) represent 4754 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.