CWE-352 (跨站请求伪造(CSRF)) — Vulnerability Class 4751

4751 vulnerabilities classified as CWE-352 (跨站请求伪造(CSRF)). AI Chinese analysis included.

CVE ID	Title	CVSS	Severity	Published
CVE-2022-2071	Name Directory < 1.25.4 - Stored Cross-Site Scripting via CSRF — Name Directory	6.1	-	2022-07-25
CVE-2022-29495	WordPress Popup Builder plugin <= 4.1.11 - Cross-Site Request Forgery (CSRF) leading to plugin settings update — Popup Builder (WordPress plugin)	5.4	Medium	2022-07-22
CVE-2022-30337	WordPress WP Meta SEO plugin <= 4.4.8 - Social Settings Update vis Cross-Site Request Forgery (CSRF) vulnerability — WP Meta SEO (WordPress plugin)	5.4	Medium	2022-07-21
CVE-2022-32289	WordPress Popup Builder plugin <= 4.1.0 - Cross-Site Request Forgery (CSRF) vulnerability leading to Popup Status Change — Popup Builder (WordPress plugin)	5.4	Medium	2022-07-21
CVE-2022-34367	Dell EMC Data Protection Central 跨站请求伪造漏洞 — Data Protection Central	5.4	Medium	2022-07-20
CVE-2022-29454	WordPress Better Messages plugin <= 1.9.9.148 - Cross-Site Request Forgery (CSRF) vulnerability — Better Messages (WordPress plugin)	3.1	Low	2022-07-20
CVE-2022-2224	Gallery for Social Photo <= 1.0.0.27 - Cross-Site Request Forgery to Post Duplication — Gallery for Social Photo	5.4	Medium	2022-07-18
CVE-2022-2443	FreeMind WP Browser <= 1.2 - Cross-Site Request Forgery to Cross-Site Scripting — FreeMind WP Browser	8.8	High	2022-07-18
CVE-2022-2001	DX Share Selection <= 1.4 - Cross-Site Request Forgery to Cross-Site Scripting — DX Share Selection	8.8	High	2022-07-18
CVE-2022-1912	Button Widget Smartsoft <= 1.0.1 - Cross-Site Request Forgery to Cross-Site Scripting — Button Widget Smartsoft	8.8	High	2022-07-18
CVE-2022-2435	AnyMind Widget <= 1.1 - Cross-Site Request Forgery to Cross-Site Scripting — AnyMind Widget	8.8	High	2022-07-18
CVE-2022-2223	Image Slider <= 1.1.121 - Cross-Site Request Forgery to Post Duplication — Image Slider	5.4	Medium	2022-07-18
CVE-2022-2039	Free Live Chat Support <= 1.0.11 - Cross-Site Request Forgery to Cross-Site Scripting — Free Live Chat Support	8.8	High	2022-07-18
CVE-2022-2144	Jquery Validation For Contact Form 7 < 5.3 - Arbitrary Options Update via CSRF — Jquery Validation For Contact Form 7	4.3	-	2022-07-17
CVE-2022-1672	Insights from Google PageSpeed < 4.0.7 - Multiple CSRF — Insights from Google PageSpeed	8.8	-	2022-07-17
CVE-2022-35228	SAP BusinessObjects Central Management Console 跨站请求伪造漏洞 — SAP BusinessObjects Business Intelligence Platform (Central management Console)	8.1	-	2022-07-12
CVE-2022-2123	WP Opt-in <= 1.4.1 - Arbitrary Settings Update via CSRF — WP Opt-in	6.5	-	2022-07-11
CVE-2022-2091	Cache Images < 3.2.1 - Image Upload / Import via CSRF — Cache Images	6.5	-	2022-07-11
CVE-2022-1957	Comment License < 1.4.0 - Arbitrary Settings Update via CSRF — Comment License	4.3	-	2022-07-11
CVE-2022-1956	Shortcut Macros <= 1.3 - Subscriber+ Arbitrary Settings Update — Shortcut Macros	4.3	-	2022-07-11
CVE-2022-1757	Pagebar < 2.70 - Arbitrary Settings Update via CSRF to Stored XSS — pagebar	5.4	-	2022-07-11
CVE-2022-1732	Rename wp-login.php <= 2.6.0 - Secret URL Update via CSRF — Rename wp-login.php	6.5	-	2022-07-11
CVE-2022-1626	Sharebar <= 1.4.1 - Arbitrary Settings Update to Stored XSS via CSRF — Sharebar	4.6	-	2022-07-11
CVE-2022-1599	Admin Management Xtended < 2.4.5 - Post Visibility/Date/Comment Status Update via CSRF — Admin Management Xtended	6.5	-	2022-07-11
CVE-2022-1576	WP Maintenance Mode & Coming Soon < 2.4.5 - Subscribed Users Deletion via CSRF — WP Maintenance Mode & Coming Soon	6.5	-	2022-07-11
CVE-2022-2353	Cross-Site Request Forgery (CSRF) in microweber/microweber — microweber/microweber	8.2	-	2022-07-09
CVE-2021-23163	JFrog Artifactory 跨站请求伪造漏洞 — JFrog Artifactory	3.1	Low	2022-07-06
CVE-2022-1967	WP Championship < 9.3 - Multiple CSRF — WP Championship	6.5	-	2022-07-04
CVE-2017-20120	TrueConf Server cross-site request forgery — Server	4.3	Medium	2022-06-29
CVE-2022-1960	MyCSS <= 1.1 - Arbitrary Settings Update via CSRF — MyCSS	4.3	-	2022-06-27

Vulnerabilities classified as CWE-352 (跨站请求伪造(CSRF)) represent 4751 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.

Goal Reached Thanks to every supporter — we hit 100%!

CWE-352 (跨站请求伪造(CSRF)) — Vulnerability Class 4751