Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-352 (跨站请求伪造(CSRF)) — Vulnerability Class 4751

4751 vulnerabilities classified as CWE-352 (跨站请求伪造(CSRF)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-9894 Sync Feedly <= 1.0.1 - Cross-Site Request Forgery to Sync Trigger — Sync Feedly 4.3 Medium2025-09-27
CVE-2025-9896 HidePost <= 2.3.8 - Cross-Site Request Forgery — HidePost 4.3 Medium2025-09-27
CVE-2025-11051 SourceCodester Pet Grooming Management Software cross-site request forgery — Pet Grooming Management Software 4.3 Medium2025-09-27
CVE-2025-10498 Ninja Forms – The Contact Form Builder That Grows With You <= 3.12.0 - Cross-Site Request Forgery to Limited File Deletion — Ninja Forms – The Contact Form Builder That Grows With You 4.3 Medium2025-09-27
CVE-2025-10499 Ninja Forms – The Contact Form Builder That Grows With You <= 3.12.0 - Cross-Site Request Forgery to Plugin Settings Update — Ninja Forms – The Contact Form Builder That Grows With You 4.3 Medium2025-09-27
CVE-2024-43192 IBM Storage TS4500 Library cross-site request forgery — Storage TS4500 Library 6.5 Medium2025-09-27
CVE-2025-11029 givanz Vvveb cross-site request forgery — Vvveb 4.3 Medium2025-09-26
CVE-2025-60173 WordPress GST for WooCommerce Plugin <= 2.0 - Cross Site Request Forgery (CSRF) Vulnerability — GST for WooCommerce 7.1 High2025-09-26
CVE-2025-60172 WordPress Flytedesk Digital Plugin <= 20181101 - Cross Site Request Forgery (CSRF) Vulnerability — Flytedesk Digital 7.1 High2025-09-26
CVE-2025-60171 WordPress Conditional Cart Messages for WooCommerce – YourPlugins.com Plugin <= 1.2.10 - Cross Site Request Forgery (CSRF) Vulnerability — Conditional Cart Messages for WooCommerce &#8211; YourPlugins.com 7.1 High2025-09-26
CVE-2025-60170 WordPress HTACCESS IP Blocker Plugin <= 1.0 - Cross Site Request Forgery (CSRF) Vulnerability — HTACCESS IP Blocker 7.1 High2025-09-26
CVE-2025-60169 WordPress W3SCloud Contact Form 7 to Zoho CRM plugin <= 3.2 - Cross Site Request Forgery (CSRF) vulnerability — W3SCloud Contact Form 7 to Zoho CRM 7.1 High2025-09-26
CVE-2025-60164 WordPress NewsmanApp plugin <= 2.7.7 - Cross Site Request Forgery (CSRF) vulnerability — NewsmanApp 7.1 High2025-09-26
CVE-2025-60156 WordPress AR For WordPress plugin <= 8.36 - Cross Site Request Forgery (CSRF) vulnerability — AR For WordPress 9.6 Critical2025-09-26
CVE-2025-60145 WordPress Lenix scss compiler Plugin <= 1.2 - Cross Site Request Forgery (CSRF) Vulnerability — Lenix scss compiler 4.3 Medium2025-09-26
CVE-2025-60139 WordPress Sendle Shipping plugin <= 6.02 - Cross Site Request Forgery (CSRF) vulnerability — Sendle Shipping 4.3 Medium2025-09-26
CVE-2025-60137 WordPress Post Featured Video Plugin <= 1.7 - Cross Site Request Forgery (CSRF) Vulnerability — Post Featured Video 4.3 Medium2025-09-26
CVE-2025-60117 WordPress Vehica Core Plugin <= 1.0.100 - Cross Site Request Forgery (CSRF) Vulnerability — Vehica Core 4.3 Medium2025-09-26
CVE-2025-60115 WordPress Instapage plugin plugin <= 3.7.0 - Cross Site Request Forgery (CSRF) vulnerability — Instapage Plugin 4.3 Medium2025-09-26
CVE-2025-60113 WordPress Groovy Menu Plugin <= 1.4.3 - Cross Site Request Forgery (CSRF) Vulnerability — Groovy Menu 4.3 Medium2025-09-26
CVE-2025-60111 WordPress Javo Core Plugin <= 3.0.0.266 - Cross Site Request Forgery (CSRF) Vulnerability — Javo Core 8.8 High2025-09-26
CVE-2025-60093 WordPress Download Manager Plugin <= 3.3.24 - Cross Site Request Forgery (CSRF) Vulnerability — Download Manager 4.3 Medium2025-09-26
CVE-2025-58914 WordPress Di Themes Demo Site Importer plugin <= 1.2 - Cross Site Request Forgery (CSRF) to Plugin Activation vulnerability — Di Themes Demo Site Importer 4.3 Medium2025-09-26
CVE-2025-10377 System Dashboard <= 2.8.20 - Cross-Site Request Forgery — System Dashboard 4.3 Medium2025-09-26
CVE-2025-10752 OAuth Single Sign On – SSO (OAuth Client) <= 6.26.12 - Cross-Site Request Forgery — OAuth Single Sign On – SSO (OAuth Client) 4.3 Medium2025-09-26
CVE-2025-58956 WordPress WP Attractive Donations System Plugin < 1.29 - Cross Site Request Forgery (CSRF) Vulnerability — WP Attractive Donations System 7.1 High2025-09-22
CVE-2025-59568 WordPress Zoho Flow Plugin <= 2.14.1 - Cross Site Request Forgery (CSRF) Vulnerability — Zoho Flow 4.3 Medium2025-09-22
CVE-2025-59572 WordPress WorkScout-Core Plugin < 1.7.06 - Cross Site Request Forgery (CSRF) Vulnerability — WorkScout-Core 8.8 High2025-09-22
CVE-2025-53451 WordPress Mihdan: No External Links Plugin <= 5.1.6.2 - Cross Site Request Forgery (CSRF) Vulnerability — Mihdan: No External Links 5.4 Medium2025-09-22
CVE-2025-53456 WordPress SEO Backlink Monitor plugin <= 1.8.0 - Cross Site Request Forgery (CSRF) vulnerability — SEO Backlink Monitor 4.3 Medium2025-09-22

Vulnerabilities classified as CWE-352 (跨站请求伪造(CSRF)) represent 4751 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.