Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-352 (跨站请求伪造(CSRF)) — Vulnerability Class 4751

4751 vulnerabilities classified as CWE-352 (跨站请求伪造(CSRF)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-6053 Zuppler Online Ordering <= 2.1.0 - Cross-Site Request Forgery to Stored Cross-Site Scripting — Zuppler Online Ordering 6.1 Medium2025-07-18
CVE-2025-6781 Copymatic – AI Content Writer & Generator <= 2.1 - Cross-Site Request Forgery to Settings Update — Copymatic – AI Content Writer & Generator 4.3 Medium2025-07-18
CVE-2025-7756 code-projects E-Commerce Site cross-site request forgery — E-Commerce Site 4.3 Medium2025-07-17
CVE-2025-48153 WordPress Import CDN-Remote Images plugin <= 2.1.2 - Cross Site Request Forgery (CSRF) Vulnerability — Import CDN-Remote Images 7.1 High2025-07-16
CVE-2025-54042 WordPress WP Post Hide plugin <= 1.0.9 - Cross Site Request Forgery (CSRF) Vulnerability — WP Post Hide 4.3 Medium2025-07-16
CVE-2025-54039 WordPress Animator plugin <= 3.0.16 - Cross Site Request Forgery (CSRF) Vulnerability — Animator 4.3 Medium2025-07-16
CVE-2025-54041 WordPress Wallet System for WooCommerce plugin <= 2.6.7 - Cross Site Request Forgery (CSRF) Vulnerability — Wallet System for WooCommerce 4.3 Medium2025-07-16
CVE-2025-54038 WordPress Restaurant Menu by MotoPress plugin <= 2.4.6 - Cross Site Request Forgery (CSRF) Vulnerability — Restaurant Menu by MotoPress 5.4 Medium2025-07-16
CVE-2025-54036 WordPress Webba Booking plugin <= 5.1.20 - Cross Site Request Forgery (CSRF) Vulnerability — Webba Booking 4.3 Medium2025-07-16
CVE-2025-54035 WordPress Newsletters plugin <= 4.10 - Cross Site Request Forgery (CSRF) Vulnerability — Newsletters 4.3 Medium2025-07-16
CVE-2025-54030 WordPress WooCommerce Google Sheet Connector plugin <= 1.3.20 - Cross Site Request Forgery (CSRF) Vulnerability — WooCommerce Google Sheet Connector 4.3 Medium2025-07-16
CVE-2025-54033 WordPress Theme Builder For Elementor plugin <= 1.2.3 - Cross Site Request Forgery (CSRF) Vulnerability — Theme Builder For Elementor 6.5 Medium2025-07-16
CVE-2025-54022 WordPress Coupon Affiliates plugin <= 6.4.0 - Cross Site Request Forgery (CSRF) Vulnerability — Coupon Affiliates 6.5 Medium2025-07-16
CVE-2025-54020 WordPress AntiSpam for Contact Form 7 plugin <= 0.6.3 - Cross Site Request Forgery (CSRF) Vulnerability — AntiSpam for Contact Form 7 5.4 Medium2025-07-16
CVE-2025-54010 WordPress FluentSnippets plugin <= 10.50 - Cross Site Request Forgery (CSRF) Vulnerability — FluentSnippets 9.6 Critical2025-07-16
CVE-2025-7667 Restrict File Access <= 1.1.2 - Cross-Site Request Forgery to Arbitrary File Deletion — Restrict File Access 8.1 High2025-07-15
CVE-2025-49462 Zoom Clients - Cross-site Scripting — Zoom Clients 3.5 Low2025-07-10
CVE-2025-7379 A security bypass vulnerability was found in DataSync Center installed on ADM — ADM 8.1AIHighAI2025-07-09
CVE-2025-53540 CSRF Vulnerability in Firmware Update Endpoints Allows Remote Code Execution — arduino-esp32 8.8AIHighAI2025-07-07
CVE-2025-20322 Denial of Service (DoS) in Search Head Cluster through Cross-Site Request Forgery (CSRF) in Splunk Enterprise — Splunk Enterprise 4.3 Medium2025-07-07
CVE-2025-20321 Membership State Change in Splunk Search Head Cluster through a Cross-Site Request Forgery (CSRF) in Splunk Enterprise — Splunk Enterprise 6.5 Medium2025-07-07
CVE-2025-7133 CodeAstro Online Movie Ticket Booking System cross-site request forgery — Online Movie Ticket Booking System 4.3 Medium2025-07-07
CVE-2025-7078 07FLYCMS/07FLY-CMS/07FlyCRM cross-site request forgery — 07FLYCMS 4.3 Medium2025-07-06
CVE-2025-53483 SecurePoll: Multiple admin actions vulnerable to Cross-Site Request Forgery — Mediawiki - SecurePoll extension 8.8 -2025-07-04
CVE-2025-23972 WordPress Contact Form 7 reCAPTCHA plugin <= 1.2.0 - Cross Site Request Forgery (CSRF) Vulnerability — Contact Form 7 reCAPTCHA 4.3 Medium2025-07-04
CVE-2025-53569 WordPress Trust Payments Gateway for WooCommerce (JavaScript Library) plugin <= 1.3.6 - Cross Site Request Forgery (CSRF) Vulnerability — Trust Payments Gateway for WooCommerce (JavaScript Library) 4.3 Medium2025-07-04
CVE-2025-53568 WordPress Radio Station plugin <= 2.5.12 - Cross Site Request Forgery (CSRF) Vulnerability — Radio Station 4.3 Medium2025-07-04
CVE-2025-5924 WP Firebase Push Notification <= 1.2.0 - Cross-Site Request Forgery to Broadcast Notification — WP Firebase Push Notification 4.3 Medium2025-07-04
CVE-2025-6041 yContributors <= 0.5 - Cross-Site Request Forgery to Stored Cross-Site Scripting — yContributors 6.1 Medium2025-07-04
CVE-2025-5933 RD Contacto <= 1.4 - Cross-Site Request Forgery to Settings Update — RD Contacto 4.3 Medium2025-07-04

Vulnerabilities classified as CWE-352 (跨站请求伪造(CSRF)) represent 4751 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.