Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-352 (跨站请求伪造(CSRF)) — Vulnerability Class 4751

4751 vulnerabilities classified as CWE-352 (跨站请求伪造(CSRF)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-50036 WordPress Mailing Group Listserv plugin <= 3.0.5 - Cross Site Request Forgery (CSRF) Vulnerability — Mailing Group Listserv 6.5 Medium2025-06-20
CVE-2025-50044 WordPress Real Estate Manager plugin <= 7.3 - Cross Site Request Forgery (CSRF) Vulnerability — Real Estate Manager 6.5 Medium2025-06-20
CVE-2025-52780 WordPress Logo Manager For Samandehi plugin <= 0.5 - Cross Site Request Forgery (CSRF) Vulnerability — Logo Manager For Samandehi 7.1 High2025-06-20
CVE-2025-52772 WordPress Virtual Moderator plugin <= 1.4 - Cross Site Request Forgery (CSRF) Vulnerability — Virtual Moderator 7.1 High2025-06-20
CVE-2025-52781 WordPress TinyNav plugin <= 1.4 - Cross Site Request Forgery (CSRF) Vulnerability — TinyNav 7.1 High2025-06-20
CVE-2025-52783 WordPress Change Cart button Colors WooCommerce plugin <= 1.0 - Cross Site Request Forgery (CSRF) Vulnerability — Change Cart button Colors WooCommerce 7.1 High2025-06-20
CVE-2025-52784 WordPress Bluff Post plugin <= 1.1.1 - Cross Site Request Forgery (CSRF) Vulnerability — Bluff Post 7.1 High2025-06-20
CVE-2025-52789 WordPress Lewe ChordPress plugin <= 4.0.1 - Cross Site Request Forgery (CSRF) to Stored XSS Vulnerability — Lewe ChordPress 7.1 High2025-06-20
CVE-2025-52790 WordPress WP-DownloadCounter plugin <= 1.01 - Cross Site Request Forgery (CSRF) Vulnerability — WP-DownloadCounter 7.1 High2025-06-20
CVE-2025-52791 WordPress Knowledge Base – Knowledge Base Maker plugin <= 1.1.8 - Cross Site Request Forgery (CSRF) Vulnerability — Knowledge Base &#8211; Knowledge Base Maker 7.1 High2025-06-20
CVE-2025-52792 WordPress WP User Stylesheet Switcher plugin <= v2.2.0 - Cross Site Request Forgery (CSRF) Vulnerability — WP User Stylesheet Switcher 7.1 High2025-06-20
CVE-2025-52793 WordPress Esselink.nu Settings plugin <= 4.6 - Cross Site Request Forgery (CSRF) vulnerability — Esselink.nu Settings 7.1 High2025-06-20
CVE-2025-52794 WordPress Creative Contact Form plugin <= 1.0.0 - Cross Site Request Forgery (CSRF) Vulnerability — Creative Contact Form 7.1 High2025-06-20
CVE-2025-52795 WordPress WP Front User Submit / Front Editor plugin <= 5.0.6 - Cross Site Request Forgery (CSRF) vulnerability — WP Front User Submit / Front Editor 7.1 High2025-06-20
CVE-2025-52825 WordPress Real Estate Manager plugin <= 7.3 - Cross Site Request Forgery (CSRF) Vulnerability — Real Estate Manager 8.8 High2025-06-20
CVE-2025-52711 WordPress Post and Page Builder by BoldGrid – Visual Drag and Drop Editor plugin <= 1.27.8 - Cross Site Request Forgery (CSRF) Vulnerability — Post and Page Builder by BoldGrid 4.3 Medium2025-06-20
CVE-2025-6341 code-projects School Fees Payment System cross-site request forgery — School Fees Payment System 4.3 Medium2025-06-20
CVE-2025-6284 PHPGurukul Car Rental Portal cross-site request forgery — Car Rental Portal 4.3 Medium2025-06-19
CVE-2024-54172 IBM Sterling B2B Integrator and IBM Sterling File Gateway cross-site request forgery — Sterling B2B Integrator 4.3 Medium2025-06-18
CVE-2025-48111 WordPress YITH PayPal Express Checkout for WooCommerce plugin <= 1.49.0 - Cross Site Request Forgery (CSRF) vulnerability — YITH PayPal Express Checkout for WooCommerce 4.3 Medium2025-06-17
CVE-2025-49856 WordPress Responsive Plus plugin <= 3.2.2 - Cross Site Request Forgery (CSRF) to Settings Change vulnerability — Responsive Plus 4.3 Medium2025-06-17
CVE-2025-49865 WordPress Advanced Settings plugin <= 3.0.1 - Cross Site Request Forgery (CSRF) Vulnerability — Advanced Settings 4.3 Medium2025-06-17
CVE-2025-6106 WuKongOpenSource WukongCRM AdminRoleController.java cross-site request forgery — WukongCRM 4.3 Medium2025-06-16
CVE-2025-6105 jflyfox jfinal_cms HOME.java cross-site request forgery — jfinal_cms 4.3 Medium2025-06-16
CVE-2025-6063 XiSearch bar <= 2.6 - Cross-Site Request Forgery to Stored Cross-Site Scripting — XiSearch bar 6.1 Medium2025-06-14
CVE-2025-6062 Yougler Blogger Profile Page <= v1.01 - Cross-Site Request Forgery to Settings Update — Yougler Blogger Profile Page 4.3 Medium2025-06-14
CVE-2025-4592 AI Image Lab – Free AI Image Generator <= 1.0.6 - Cross-Site Request Forgery to API Key Update — AI Image Lab – Free AI Image Generator 4.3 Medium2025-06-14
CVE-2025-6055 Zen Sticky Social <= 0.3 - Cross-Site Request Forgery to Stored Cross-Site Scripting — Zen Sticky Social 6.1 Medium2025-06-14
CVE-2025-6064 WP URL Shortener <= 1.2 - Cross-Site Request Forgery to Stored Cross-Site Scripting — WP URL Shortener 6.1 Medium2025-06-14
CVE-2025-6059 Seraphinite Accelerator <= 2.27.21 - Cross-Site Request Forgery to Multiple Administrative Actions — Seraphinite Accelerator 4.3 Medium2025-06-14

Vulnerabilities classified as CWE-352 (跨站请求伪造(CSRF)) represent 4751 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.