Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-352 (跨站请求伪造(CSRF)) — Vulnerability Class 4753

4753 vulnerabilities classified as CWE-352 (跨站请求伪造(CSRF)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2023-23792 WordPress Swatchly – WooCommerce Variation Swatches for Products Plugin <= 1.2.0 is vulnerable to Cross Site Request Forgery (CSRF) — Swatchly 4.3 Medium2023-07-11
CVE-2023-2079 Buy Me a Coffee – Button and Widget Plugin <= 3.7 - Cross-Site Request Forgery — Buy Me a Coffee – Button and Widget Plugin 7.1 High2023-07-11
CVE-2023-37277 XWiki Platform vulnerable to cross-site request forgery (CSRF) via the REST API — xwiki-platform 9.7 Critical2023-07-10
CVE-2023-37392 WordPress WP Dummy Content Generator Plugin <= 2.3.0 is vulnerable to Cross Site Request Forgery (CSRF) — WP Dummy Content Generator 5.4 Medium2023-07-10
CVE-2023-35912 WordPress Potent Donations for WooCommerce Plugin <= 1.1.9 is vulnerable to Cross Site Request Forgery (CSRF) — Potent Donations for WooCommerce 4.3 Medium2023-07-10
CVE-2023-36691 WordPress WebwinkelKeur Plugin <= 3.24 is vulnerable to Cross Site Request Forgery (CSRF) — WebwinkelKeur 5.4 Medium2023-07-10
CVE-2023-23787 WordPress Premmerce Redirect Manager Plugin <= 1.0.9 is vulnerable to Cross Site Request Forgery (CSRF) — Premmerce Redirect Manager 4.3 Medium2023-07-10
CVE-2023-28995 WordPress Configurable Tag Cloud Plugin <= 5.2 is vulnerable to Cross Site Request Forgery (CSRF) — Configurable Tag Cloud (CTC) 5.4 Medium2023-07-10
CVE-2023-23993 WordPress IP Blocker Lite Plugin <= 11.1.1 is vulnerable to Cross Site Request Forgery (CSRF) — LionScripts: IP Blocker Lite 5.4 Medium2023-07-10
CVE-2023-28986 WordPress Affiliates Manager Plugin <= 2.9.20 is vulnerable to Cross Site Request Forgery (CSRF) — Affiliates Manager 5.4 Medium2023-07-10
CVE-2023-28989 WordPress Happy Addons for Elementor Plugin <= 3.8.2 is vulnerable to Cross Site Request Forgery (CSRF) — Happy Addons for Elementor 4.3 Medium2023-07-10
CVE-2023-25478 WordPress Weather Station Plugin <= 3.8.12 is vulnerable to Cross Site Request Forgery (CSRF) — Weather Station 4.3 Medium2023-07-10
CVE-2023-22695 WordPress Custom Field Template Plugin <= 2.5.8 is vulnerable to Cross Site Request Forgery (CSRF) — Custom Field Template 4.3 Medium2023-07-10
CVE-2023-22694 WordPress BigContact Plugin <= 1.5.8 is vulnerable to Cross Site Request Forgery (CSRF) — BigContact Contact Page 4.3 Medium2023-07-10
CVE-2023-23869 WordPress Google XML Sitemap for Mobile Plugin <= 1.6.1 is vulnerable to Cross Site Request Forgery (CSRF) — Google XML Sitemap for Mobile 4.3 Medium2023-07-10
CVE-2023-23897 WordPress Simple Mobile URL Redirect Plugin <= 1.7.2 is vulnerable to Cross Site Request Forgery (CSRF) — Simple Mobile URL Redirect 4.3 Medium2023-07-10
CVE-2023-24405 WordPress Contact Form 7 – PayPal & Stripe Add-on Plugin <= 1.9.3 is vulnerable to Cross Site Request Forgery (CSRF) — Contact Form 7 – PayPal & Stripe Add-on 5.4 Medium2023-07-10
CVE-2023-23804 WordPress HT Feed Plugin <= 1.2.7 is vulnerable to Cross Site Request Forgery (CSRF) — HT Feed 4.3 Medium2023-07-10
CVE-2023-22673 WordPress Website Monetization by MageNet Plugin <= 1.0.29.1 is vulnerable to Cross Site Request Forgery (CSRF) — Website Monetization by MageNet 5.4 Medium2023-07-10
CVE-2023-3579 HadSky User cross-site request forgery — HadSky 4.3 Medium2023-07-10
CVE-2023-24395 WordPress Contact Form 7 Redirect & Thank You Page Plugin <= 1.0.3 is vulnerable to Cross Site Request Forgery (CSRF) — Contact Form 7 Redirect & Thank You Page 5.4 Medium2023-07-10
CVE-2023-20180 Cisco Webex Meetings 跨站请求伪造漏洞 — Cisco Webex Meetings 4.3 Medium2023-07-07
CVE-2023-35120 PiiGAB M-Bus Cross-Site Request Forgery — M-Bus SoftwarePack 8.8 High2023-07-06
CVE-2023-30607 icingaweb2-module-jira template and field configuration are susceptible to CSRF — icingaweb2-module-jira 5.0 Medium2023-07-05
CVE-2021-4405 ElasticPress <= 3.5.3 - Cross-Site Request Forgery Bypass — ElasticPress 4.3 Medium2023-07-01
CVE-2020-36749 Easy Testimonials <= 3.6.1 - Cross-Site Request Forgery Bypass — Easy Testimonials 4.3 Medium2023-07-01
CVE-2021-4404 Event Espresso 4 Decaf <= 4.10.11 - Cross-Site Request Forgery Bypass — Event Espresso – Event Registration & Ticketing Sales 4.3 Medium2023-07-01
CVE-2021-4403 Remove Schema <= 1.5 - Cross-Site Request Forgery Bypass — Remove Schema 4.3 Medium2023-07-01
CVE-2020-36748 Dokan <= 3.0.8 - Cross-Site Request Forgery Bypass — Dokan: AI Powered WooCommerce Multivendor Marketplace Solution – Build Your Own Amazon, eBay, Etsy 4.3 Medium2023-07-01
CVE-2021-4402 Multiple Roles <= 1.3.1- Cross-Site Request Forgery Bypass — Multiple Roles 4.3 Medium2023-07-01

Vulnerabilities classified as CWE-352 (跨站请求伪造(CSRF)) represent 4753 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.