Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-352 (跨站请求伪造(CSRF)) — Vulnerability Class 4751

4751 vulnerabilities classified as CWE-352 (跨站请求伪造(CSRF)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-43748 Liferay Portal和Liferay DXP 跨站请求伪造漏洞 — Portal 8.8AIHighAI2025-08-20
CVE-2025-54174 Cross-Site Request Forgery in QuickCMS — Quick.CMS 6.5AIMediumAI2025-08-20
CVE-2025-8102 Easy Digital Downloads <= 3.5.0 - Cross-Site Request Forgery to Plugin Deactivation via edd_sendwp_disconnect and edd_sendwp_remote_install Functions — Easy Digital Downloads – eCommerce Payments and Subscriptions made easy 5.4 Medium2025-08-20
CVE-2025-49381 WordPress ads.txt Guru Connect Plugin <= 1.1.1 - Cross Site Request Forgery (CSRF) Vulnerability — ads.txt Guru Connect 9.6 Critical2025-08-20
CVE-2025-49382 WordPress JobZilla - Job Board WordPress Theme Theme <= 2.0 - Cross Site Request Forgery (CSRF) Vulnerability — JobZilla - Job Board WordPress Theme 8.8 High2025-08-20
CVE-2025-49391 WordPress Sign-up Sheets Plugin <= 2.3.3 - Cross Site Request Forgery (CSRF) Vulnerability — Sign-up Sheets 4.3 Medium2025-08-20
CVE-2025-49399 WordPress NEX-Forms Plugin <= 9.1.3 - Cross Site Request Forgery (CSRF) Vulnerability — NEX-Forms 8.8 High2025-08-20
CVE-2025-54052 WordPress Realtyna Organic IDX plugin <= 5.0.0 - Local File Inclusion Vulnerability — Realtyna Organic IDX plugin 7.5 High2025-08-20
CVE-2025-43745 Liferay Portal和Liferay DXP 跨站请求伪造漏洞 — Portal 8.8AIHighAI2025-08-19
CVE-2025-7686 weichuncai(WP伪春菜) <= 1.5 - Cross-Site Request Forgery to Stored Cross-Site Scripting — weichuncai(WP伪春菜) 6.1 Medium2025-08-16
CVE-2025-7683 LatestCheckins <= 1 - Cross-Site Request Forgery to Stored Cross-Site Scripting — LatestCheckins 6.1 Medium2025-08-16
CVE-2025-7668 Linux Promotional Plugin <= 1.4 - Cross-Site Request Forgery to Stored Cross-Site Scripting — Linux Promotional Plugin 6.1 Medium2025-08-16
CVE-2025-7684 Last.fm Recent Album Artwork <= 1.0.2 - Cross-Site Request Forgery to Stored Cross-Site Scripting — Last.fm Recent Album Artwork 6.1 Medium2025-08-16
CVE-2025-7688 Add User Meta <= 1.0.1 - Cross-Site Request Forgery to Stored Cross-Site Scripting — Add User Meta 6.1 Medium2025-08-15
CVE-2025-8992 mtons mblog cross-site request forgery — mblog 4.3 Medium2025-08-15
CVE-2025-52767 WordPress NetInsight Analytics Implementation Plugin <= 1.0.3 - Cross Site Request Forgery (CSRF) Vulnerability — NetInsight Analytics Implementation Plugin 4.3 Medium2025-08-14
CVE-2025-52765 WordPress NetInsight Analytics Implementation Plugin <= 1.0.3 - Cross Site Request Forgery (CSRF) Vulnerability — NetInsight Analytics Implementation Plugin 7.1 High2025-08-14
CVE-2025-52769 WordPress flexo-social-gallery Plugin <= 1.0006 - Cross Site Request Forgery (CSRF) Vulnerability — flexo-social-gallery 4.3 Medium2025-08-14
CVE-2025-52797 WordPress StoryMap Plugin <= 2.1 - Cross Site Request Forgery (CSRF) Vulnerability — StoryMap 8.2 High2025-08-14
CVE-2025-53219 WordPress WP-Database-Optimizer-Tools Plugin <= 0.2 - Cross Site Request Forgery (CSRF) Vulnerability — WP-Database-Optimizer-Tools 5.4 Medium2025-08-14
CVE-2025-53249 WordPress Build App Online Plugin <= 1.0.23 - Cross Site Request Forgery (CSRF) Vulnerability — Build App Online 6.5 Medium2025-08-14
CVE-2025-53347 WordPress Kalium Theme <= 3.18.3 - Cross Site Request Forgery (CSRF) Vulnerability — Kalium 4.3 Medium2025-08-14
CVE-2025-53587 WordPress Findgo Theme <= 1.3.57 - Cross Site Request Forgery (CSRF) Vulnerability — Findgo 8.8 High2025-08-14
CVE-2025-54728 WordPress CM On Demand Search And Replace Plugin <= 1.5.2 - Cross Site Request Forgery (CSRF) Vulnerability — CM On Demand Search And Replace 4.3 Medium2025-08-14
CVE-2025-54732 WordPress WPDM – Premium Packages Plugin <= 6.0.2 - Cross Site Request Forgery (CSRF) Vulnerability — WPDM – Premium Packages 4.3 Medium2025-08-14
CVE-2025-54702 WordPress Ebook Store Plugin plugin <= 5.8013 - Cross Site Request Forgery (CSRF) Vulnerability — Ebook Store 4.3 Medium2025-08-14
CVE-2025-54703 WordPress Integrate Google Drive plugin <= 1.5.2 - Cross Site Request Forgery (CSRF) vulnerability — Integrate Google Drive 4.3 Medium2025-08-14
CVE-2025-54694 WordPress Button Block Plugin plugin <= 1.2.0 - Cross Site Request Forgery (CSRF) Vulnerability — Button Block 4.3 Medium2025-08-14
CVE-2025-54682 WordPress Connector for Gravity Forms and Google Sheets Plugin plugin <= 1.2.4 - Cross Site Request Forgery (CSRF) Vulnerability — Connector for Gravity Forms and Google Sheets 5.4 Medium2025-08-14
CVE-2025-54675 WordPress YITH WooCommerce Popup Plugin plugin <= 1.48.0 - Cross Site Request Forgery (CSRF) Vulnerability — YITH WooCommerce Popup 4.3 Medium2025-08-14

Vulnerabilities classified as CWE-352 (跨站请求伪造(CSRF)) represent 4751 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.