Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-352 (跨站请求伪造(CSRF)) — Vulnerability Class 4751

4751 vulnerabilities classified as CWE-352 (跨站请求伪造(CSRF)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-62734 WordPress Media Library Downloader plugin <= 1.4.0 - Cross Site Request Forgery (CSRF) vulnerability — Media Library Downloader 8.8AIHighAI2025-12-09
CVE-2025-62103 WordPress Media Library File Download plugin <= 1.4 - Cross Site Request Forgery (CSRF) vulnerability — Media Library File Download 4.3 Medium2025-12-09
CVE-2025-62102 WordPress DoFollow Case by Case plugin <= 3.5.1 - Cross Site Request Forgery (CSRF) vulnerability — DoFollow Case by Case 8.1AIHighAI2025-12-09
CVE-2025-59132 WordPress Duplicate Content Cure plugin <= 1.0 - Cross Site Request Forgery (CSRF) vulnerability — Duplicate Content Cure 8.1AIHighAI2025-12-09
CVE-2025-49351 WordPress Create Posts & Terms plugin <= 1.3.1 - Cross Site Request Forgery (CSRF) vulnerability — Create Posts &amp; Terms 6.1AIMediumAI2025-12-09
CVE-2025-49341 WordPress PDF Creator Lite plugin <= 1.2 - Cross Site Request Forgery (CSRF) vulnerability — PDF Creator Lite 6.1AIMediumAI2025-12-09
CVE-2025-49347 WordPress WP sIFR plugin <= 0.6.8.1 - Cross Site Request Forgery (CSRF) vulnerability — WP sIFR 6.1AIMediumAI2025-12-09
CVE-2025-67596 WordPress Business Directory plugin <= 6.4.19 - Cross Site Request Forgery (CSRF) vulnerability — Business Directory 4.3 Medium2025-12-09
CVE-2025-67598 WordPress SupportCandy plugin <= 3.4.1 - Cross Site Request Forgery (CSRF) vulnerability — SupportCandy 4.3 Medium2025-12-09
CVE-2025-67595 WordPress Quiz Maker plugin <= 6.7.0.82 - Cross Site Request Forgery (CSRF) vulnerability — Quiz Maker 4.3 Medium2025-12-09
CVE-2025-67593 WordPress UsersWP plugin <= 1.2.48 - Cross Site Request Forgery (CSRF) vulnerability — UsersWP 4.3 Medium2025-12-09
CVE-2025-67590 WordPress Ultimate FAQ plugin <= 2.4.3 - Cross Site Request Forgery (CSRF) vulnerability — Ultimate FAQ 4.3 Medium2025-12-09
CVE-2025-67591 WordPress JNews Paywall plugin < 12.0.1 - Cross Site Request Forgery (CSRF) vulnerability — JNews Paywall 4.3 Medium2025-12-09
CVE-2025-67534 WordPress Rencontre plugin <= 3.13.7 - Cross Site Request Forgery (CSRF) vulnerability — Rencontre 7.1 High2025-12-09
CVE-2025-67472 WordPress Online Booking & Scheduling Calendar for WordPress by vcita plugin <= 4.5.5 - Cross Site Request Forgery (CSRF) vulnerability — Online Booking & Scheduling Calendar for WordPress by vcita 4.3 Medium2025-12-09
CVE-2025-67473 WordPress CWW Companion plugin <= 1.3.2 - Cross Site Request Forgery (CSRF) vulnerability — CWW Companion 4.3 Medium2025-12-09
CVE-2025-67469 WordPress PDF Thumbnail Generator plugin <= 1.4 - Cross Site Request Forgery (CSRF) vulnerability — PDF Thumbnail Generator 4.3 Medium2025-12-09
CVE-2025-67471 WordPress Quick Contact Form plugin <= 8.2.5 - Cross Site Request Forgery (CSRF) vulnerability — Quick Contact Form 4.3 Medium2025-12-09
CVE-2025-66531 WordPress Salon booking system plugin <= 10.30.3 - Cross Site Request Forgery (CSRF) vulnerability — Salon booking system 4.3 Medium2025-12-09
CVE-2025-67465 WordPress Simple Link Directory plugin <= 8.8.3 - Cross Site Request Forgery (CSRF) vulnerability — Simple Link Directory 4.3 Medium2025-12-09
CVE-2025-66529 WordPress Chartify plugin <= 3.6.3 - Cross Site Request Forgery (CSRF) vulnerability — Chartify 4.3 Medium2025-12-09
CVE-2025-64256 WordPress Simple Folio plugin <= 1.1.0 - Cross Site Request Forgery (CSRF) vulnerability — Simple Folio 4.3 Medium2025-12-09
CVE-2025-11022 CSRF in Panilux — Panilux 9.6 Critical2025-12-09
CVE-2025-65962 Tuleap has missing CSRF protections its in tracker field dependencies — tuleap 4.6 Medium2025-12-08
CVE-2025-64760 Tuleap has missing CSRF protections in its tracker trigger management system — tuleap 4.6 Medium2025-12-08
CVE-2025-64499 Tuleap is missing CSRF protections for its planning management API — tuleap 4.6 Medium2025-12-08
CVE-2025-64498 Tuleap has a Cross-Site Request Forgery (CSRF) vulnerability — tuleap 4.6 Medium2025-12-08
CVE-2025-42616 CSRF vulnerability in CIRCL Vulnerability-Lookup — Vulnerability-Lookup 8.1AIHighAI2025-12-08
CVE-2025-13629 WP Landing Page <= 0.9.3 - Cross-Site Request Forgery to Arbitrary Post Meta Update — WP Landing Page 4.3 Medium2025-12-06
CVE-2025-14117 fit2cloud Halo cross-site request forgery — Halo 4.3 Medium2025-12-06

Vulnerabilities classified as CWE-352 (跨站请求伪造(CSRF)) represent 4751 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.