CWE-352 (跨站请求伪造(CSRF)) — Vulnerability Class 4753

4753 vulnerabilities classified as CWE-352 (跨站请求伪造(CSRF)). AI Chinese analysis included.

CVE ID	Title	CVSS	Severity	Published
CVE-2020-36747	Lightweight Sidebar Manager <= 1.1.4 - Cross-Site Request Forgery Bypass — Lightweight Sidebar Manager	4.3	Medium	2023-07-01
CVE-2021-4401	Style Kits <= 1.8.0 - Cross-Site Request Forgery Bypass — Style Kits – Advanced Theme Styles for Elementor, Elementor Kits & Elementor Patterns	8.8	High	2023-07-01
CVE-2021-4400	Better Search <= 2.5.2 - Cross-Site Request Forgery Bypass — Better Search – Relevant search results for WordPress	4.3	Medium	2023-07-01
CVE-2021-4399	Edwiser Bridge <= 2.0.6 - Cross-Site Request Forgery Bypass — Edwiser Bridge – WordPress Moodle Integration	4.3	Medium	2023-07-01
CVE-2021-4398	Amministrazione Trasparente <= 7.1 - Cross-Site Request Forgery Bypass — Amministrazione Trasparente	4.3	Medium	2023-07-01
CVE-2021-4397	Staff Directory Plugin <= 3.6 - Cross-Site Request Forgery Bypass — Staff Directory Plugin: Company Directory	4.3	Medium	2023-07-01
CVE-2021-4396	Rucy <= 0.4.4 - Cross-Site Request Forgery Bypass — Rucy	4.3	Medium	2023-07-01
CVE-2020-36746	Menu Swapper <= 1.1.0.2 - Cross-Site Request Forgery Bypass — Menu Swapper	4.3	Medium	2023-07-01
CVE-2021-4395	Abandoned Cart Recovery for WooCommerce <= 1.0.4 - Cross-Site Request Forgery Bypass — Abandoned Cart Recovery for WooCommerce	4.3	Medium	2023-07-01
CVE-2020-36745	WP Project Manager <= 2.4.0 - Cross-Site Request Forgery Bypass — Project Manager – AI Powered Project Management, Task Management, Kanban Board & Time Tracker	4.3	Medium	2023-07-01
CVE-2021-4394	Locations <= 3.2.1 - Cross-Site Request Forgery Bypass — Locations	4.3	Medium	2023-07-01
CVE-2020-36744	NotificationX <= 1.8.2 - Cross-Site Request Forgery Bypass — NotificationX – FOMO, Live Sales Notification, WooCommerce Sales Popup, GDPR, Social Proof, Announcement Banner & Floating Notification Bar	4.3	Medium	2023-07-01
CVE-2021-4392	eCommerce Product Catalog Plugin for WordPress <= 2.9.43 - Cross-Site Request Forgery Bypass — eCommerce Product Catalog Plugin for WordPress	4.3	Medium	2023-07-01
CVE-2020-36743	Product Catalog Simple <= 1.5.13 - Cross-Site Request Forgery Bypass — Product Catalog Simple	4.3	Medium	2023-07-01
CVE-2020-36742	Custom Field Template <= 2.5.1 - Cross-Site Request Forgery Bypass — Custom Field Template	4.3	Medium	2023-07-01
CVE-2021-4391	Ultimate Gift Cards for WooCommerce <= 2.1.1 - Cross-Site Request Forgery Bypass — Ultimate Gift Cards for WooCommerce	4.3	Medium	2023-07-01
CVE-2020-36741	MultiVendorX – MultiVendor Marketplace Solution For WooCommerce <= 3.5.7 - Cross-Site Request Forgery Bypass — MultiVendorX – WooCommerce Multivendor Marketplace Solutions	4.3	Medium	2023-07-01
CVE-2021-4390	Contact Form 7 Style <= 3.2 - Cross-Site Request Forgery Bypass — Contact Form 7 Style	4.3	Medium	2023-07-01
CVE-2021-4389	WP Travel <= 4.4.6 - Cross-Site Request Forgery Bypass — WP Travel – Ultimate Travel Booking System, Tour Management Engine	4.3	Medium	2023-07-01
CVE-2020-36740	Radio Buttons for Taxonomies <= 2.0.5 - Cross-Site Request Forgery Bypass — Radio Buttons for Taxonomies	4.3	Medium	2023-07-01
CVE-2021-4393	eCommerce Product Catalog Plugin for WordPress <= 3.0.17 - Cross-Site Request Forgery Bypass — eCommerce Product Catalog Plugin for WordPress	4.3	Medium	2023-07-01
CVE-2021-4387	Opal Estate <= 1.6.11 - Cross-Site Request Forgery Bypass — Opal Estate	4.3	Medium	2023-07-01
CVE-2021-4386	WP Security Question <= 1.0.5 - Cross-Site Request Forgery Bypass — WP Security Question	4.3	Medium	2023-07-01
CVE-2021-4385	WP Private Content Plus <= 3.1 - Cross-Site Request Forgery Bypass — WP Private Content Plus	4.3	Medium	2023-07-01
CVE-2020-36739	Feed Them Social – Page, Post, Video, and Photo Galleries <= 2.8.6 - Cross-Site Request Forgery Bypass — Feed Them Social – Social Media Feeds, Video, and Photo Galleries	4.3	Medium	2023-07-01
CVE-2020-36738	Cool Timeline (Horizontal & Vertical Timeline) <= 2.0.2 - Cross-Site Request Forgery Bypass — Cool Timeline (Horizontal & Vertical Timeline)	4.3	Medium	2023-07-01
CVE-2021-4384	WordPress Photo Gallery – Image Gallery <= 1.0.6 - Cross-Site Request Forgery Bypass — WordPress Photo Gallery – Image Gallery	4.3	Medium	2023-07-01
CVE-2020-36737	Import / Export Customizer Settings <= 1.0.3 - Cross-Site Request Forgery Bypass — Import / Export Customizer Settings	4.3	Medium	2023-07-01
CVE-2020-36736	WooCommerce Checkout & Funnel Builder by CartFlows – Create High Converting Stores For WooCommerce <= 1.5.15 - Cross-Site Request Forgery Bypass — CartFlows – Funnel Builder & Checkout Plugin for WooCommerce	4.3	Medium	2023-07-01
CVE-2020-36735	WP ERP \| Complete HR solution with recruitment & job listings \| WooCommerce CRM & Accounting <= 1.6.3 - Cross-Site Request Forgery Bypass — ERP: Complete HR, Accounting & CRM Suite with WooCommerce CRM Support	4.3	Medium	2023-07-01

Vulnerabilities classified as CWE-352 (跨站请求伪造(CSRF)) represent 4753 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.

Goal Reached Thanks to every supporter — we hit 100%!

CWE-352 (跨站请求伪造(CSRF)) — Vulnerability Class 4753