Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-352 (跨站请求伪造(CSRF)) — Vulnerability Class 4751

4751 vulnerabilities classified as CWE-352 (跨站请求伪造(CSRF)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2022-4766 dolibarr_project_timesheet Form cross-site request forgery — dolibarr_project_timesheet 4.3 Medium2022-12-27
CVE-2020-36633 moodle-block_sitenews block_sitenews.php get_content cross-site request forgery — moodle-block_sitenews 4.3 Medium2022-12-27
CVE-2022-4646 Cross-Site Request Forgery (CSRF) in ikus060/rdiffweb — ikus060/rdiffweb 7.1 -2022-12-22
CVE-2022-4633 Auto Upload Images Settings setting-page.php cross-site request forgery — Auto Upload Images 4.3 Medium2022-12-21
CVE-2022-4604 wp-english-wp-admin Plugin english-wp-admin.php register_endpoints cross-site request forgery — wp-english-wp-admin Plugin 4.3 Medium2022-12-18
CVE-2022-4564 University of Central Florida Materia API Controller api.php before cross-site request forgery — Materia 4.3 Medium2022-12-16
CVE-2022-3427 Corner Ad <= 1.0.56 - Cross-Site Request Forgery — Corner Ad 8.8 High2022-12-15
CVE-2022-41263 SAP Business Objects Business Intelligence Platform 跨站请求伪造漏洞 — Business Objects Business Intelligence Platform (Web intelligence) 4.3 Medium2022-12-12
CVE-2022-41622 iControl SOAP vulnerability — BIG-IP 8.8 High2022-12-07
CVE-2022-45824 WordPress Advanced Booking Calendar Plugin <= 1.7.1 is vulnerable to Cross Site Request Forgery (CSRF) — Advanced Booking Calendar 5.4 Medium2022-12-05
CVE-2022-35730 WordPress Oceanwp sticky header plugin <= 1.0.8 is vulnerable to Cross Site Request Forgery (CSRF) — Oceanwp sticky header 4.3 Medium2022-12-04
CVE-2022-4220 Chained Quiz <= 1.3.2.4 - Cross-Site Request Forgery to Question Deletion — Chained Quiz 5.4 Medium2022-12-02
CVE-2022-4219 Chained Quiz <= 1.3.2.4 - Cross-Site Request Forgery to Submitted Response Deletion — Chained Quiz 5.4 Medium2022-12-02
CVE-2022-4218 Chained Quiz <= 1.3.2.4 - Cross-Site Request Forgery to Arbitrary Quiz Deletion and Copying — Chained Quiz 5.4 Medium2022-12-02
CVE-2022-41297 IBM Db2U cross-site request forgery — Db2U 4.3 Medium2022-12-01
CVE-2022-41296 IBM Db2U cross-site respect forgery — Db2U 6.5 Medium2022-12-01
CVE-2022-26366 WordPress AdRotate Banner Manager Plugin <= 5.9 is vulnerable to Cross Site Request Forgery (CSRF) — AdRotate Banner Manager (WordPress plugin) 5.4 Medium2022-11-30
CVE-2022-3898 WP Affiliate Platform <= 6.3.9 - Cross-Site Request Forgery — WP Affiliate Platform 8.8 High2022-11-29
CVE-2022-3747 Becustom <= 1.0.5.2 - Cross-Site Request Forgery — Becustom 8.8 High2022-11-29
CVE-2022-34654 WordPress Manage Notification E-mails Plugin <= 1.8.2 is vulnerable to Cross Site Request Forgery (CSRF) — Manage Notification E-mails (WordPress plugin) 4.3 Medium2022-11-28
CVE-2022-41925 Tailscale daemon is vulnerable to information disclosure via CSRF — tailscale 8.0 -2022-11-23
CVE-2022-41927 XWiki Platform vulnerable to Cross-Site Request Forgery (CSRF) allowing to delete or rename tags — xwiki-platform 7.4 High2022-11-23
CVE-2022-45149 Moodle 跨站请求伪造漏洞 — Moodle 7.1 -2022-11-23
CVE-2022-44737 WordPress All In One WP Security plugin <= 5.1.0 - Multiple Cross-Site Request Forgery (CSRF) vulnerabilities — All-In-One Security (AIOS) – Security and Firewall (WordPress plugin) 5.4 Medium2022-11-22
CVE-2022-41919 Fastify vulnerable to Cross-Site Request Forgery (CSRF) attack via incorrect content type — fastify 4.2 Medium2022-11-22
CVE-2022-41615 WordPress Store Locator plugin <= 1.4.5 - Cross-Site Scripting (XSS) via Cross-Site Request Forgery (CSRF) vulnerability — Store Locator WordPress (WordPress plugin) 6.1 Medium2022-11-18
CVE-2022-41634 WordPress Media Library Folders plugin <= 7.1.1 - Cross-Site Request Forgery (CSRF) vulnerability — Media Library Folders (WordPress plugin) 5.4 Medium2022-11-18
CVE-2022-41685 Multiple Cross-Site Request Forgery (CSRF) vulnerabilities in Integration for Szamlazz.hu & WooCommerce and Csomagpontok és szállítási címkék WooCommerce hez plugins — Integration for Szamlazz.hu & WooCommerce (WordPress plugin) 5.4 Medium2022-11-18
CVE-2022-40695 WordPress SEO Redirection Plugin plugin <= 8.9 - Multiple Cross-Site Scripting (CSRF) vulnerabilities — SEO Redirection Plugin – 301 Redirect Manager (WordPress plugin) 5.4 Medium2022-11-18
CVE-2022-44740 WordPress Creative Mail plugin <= 1.5.4 - Multiple Cross-Site Request Forgery (CSRF) vulnerabilities — Creative Mail (WordPress plugin) 5.4 Medium2022-11-18

Vulnerabilities classified as CWE-352 (跨站请求伪造(CSRF)) represent 4751 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.