Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-352 (跨站请求伪造(CSRF)) — Vulnerability Class 4751

4751 vulnerabilities classified as CWE-352 (跨站请求伪造(CSRF)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-46442 WordPress Loan Calculator plugin <= 1.3 - CSRF to Stored XSS vulnerability — Loan Calculator 7.1 High2025-04-24
CVE-2025-46513 WordPress All in One Time Clock Lite plugin < 1.3.326 - Cross Site Request Forgery (CSRF) Vulnerability — All in One Time Clock Lite 4.3 Medium2025-04-24
CVE-2025-46457 WordPress Wp Custom CMS Block plugin <= 2.1 - CSRF to Stored XSS vulnerability — Wp Custom CMS Block 7.1 High2025-04-24
CVE-2025-46530 WordPress Hacklog Remote Attachment plugin <= 1.3.2 - Cross Site Request Forgery (CSRF) Vulnerability — Hacklog Remote Attachment 7.1 High2025-04-24
CVE-2025-46524 WordPress WP Filter Post Category plugin <= 2.1.4 - Cross Site Request Forgery (CSRF) to Stored XSS vulnerability — WP Filter Post Category 7.1 High2025-04-24
CVE-2025-46528 WordPress Availability Calendar plugin <= 0.2.4 - Cross Site Request Forgery (CSRF) Vulnerability — Availability Calendar 7.1 High2025-04-24
CVE-2025-46520 WordPress Related Posts via Taxonomies plugin <= 1.0.1 - Cross Site Request Forgery (CSRF) to Stored XSS vulnerability — Related Posts via Taxonomies 7.1 High2025-04-24
CVE-2025-46522 WordPress Tabs plugin <= 4.0.3 - Cross Site Request Forgery (CSRF) to Stored XSS vulnerability — Tabs 7.1 High2025-04-24
CVE-2025-46516 WordPress Twitter Card Generator plugin <= 1.0.5 - Cross Site Request Forgery (CSRF) to Stored XSS vulnerability — Twitter Card Generator 7.1 High2025-04-24
CVE-2025-46512 WordPress Custom Functions Plugin plugin <= 1.1 - CSRF to Stored XSS vulnerability — Custom Functions Plugin 7.1 High2025-04-24
CVE-2025-46514 WordPress Milat jQuery Automatic Popup plugin <= 1.3.1 - CSRF to Stored XSS vulnerability — Milat jQuery Automatic Popup 7.1 High2025-04-24
CVE-2025-46510 WordPress Contact Form 7 Calendar plugin <= 3.0.1 - CSRF to Stored XSS vulnerability — Contact Form 7 Calendar 7.1 High2025-04-24
CVE-2025-46508 WordPress Advanced lazy load plugin <= 1.6.0 - CSRF to Stored XSS vulnerability — Advanced lazy load 7.1 High2025-04-24
CVE-2025-46506 WordPress WpZon – Amazon Affiliate Plugin plugin <= 1.3 - CSRF to XSS vulnerability — WpZon – Amazon Affiliate Plugin 7.1 High2025-04-24
CVE-2025-46504 WordPress Vasaio QR Code plugin <= 1.2.5 - CSRF to XSS vulnerability — Vasaio QR Code 7.1 High2025-04-24
CVE-2025-46497 WordPress Navegg Analytics plugin <= 3.3.3 - Cross Site Request Forgery (CSRF) vulnerability — Navegg Analytics 7.1 High2025-04-24
CVE-2025-46495 WordPress Drop Caps plugin <= 2.1 - CSRF to XSS vulnerability — Drop Caps 6.5 Medium2025-04-24
CVE-2025-46492 WordPress Call Now PHT Blog plugin <= 2.4.1 - CSRF to XSS vulnerability — Call Now PHT Blog 7.1 High2025-04-24
CVE-2025-46466 WordPress Modern Polls plugin <= 1.0.10 - CSRF to Stored XSS vulnerability — Modern Polls 7.1 High2025-04-24
CVE-2025-46465 WordPress Print Science Designer plugin <= 1.3.155 - CSRF to Stored XSS vulnerability — Print Science Designer 7.1 High2025-04-24
CVE-2025-46462 WordPress WPVN plugin <= 0.7.8 - Cross Site Request Forgery (CSRF) Vulnerability — WPVN 4.3 Medium2025-04-24
CVE-2025-46452 WordPress Google News plugin <= 2.5.1 - CSRF to Stored XSS vulnerability — Google News 7.1 High2025-04-24
CVE-2025-46450 WordPress occupancyplan plugin <= 1.0.3.0 - Cross Site Request Forgery (CSRF) to Stored XSS vulnerability — occupancyplan 7.1 High2025-04-24
CVE-2025-46436 WordPress SCSS-Library plugin <= 0.4.1 - Cross Site Request Forgery (CSRF) Vulnerability — SCSS-Library 4.3 Medium2025-04-24
CVE-2025-46439 WordPress Plugin Central plugin <= 2.5.1 - CSRF to Arbitrary File Deletion vulnerability — Plugin Central 7.4 High2025-04-24
CVE-2025-46435 WordPress Time Based Greeting plugin <= 2.2.2 - CSRF to Stored XSS vulnerability — Time Based Greeting 7.1 High2025-04-24
CVE-2025-39381 WordPress KiotViet Sync plugin <= 1.8.5 - CSRF to Stored XSS vulnerability — KiotViet Sync 7.1 High2025-04-24
CVE-2025-3907 Search API Solr - Moderately critical - Cross Site Request Forgery - SA-CONTRIB-2025-046 — Search API Solr 8.8 -2025-04-23
CVE-2025-31328 Cross-Site Request Forgery (CSRF) vulnerability in SAP S/4 HANA (Learning Solution) — SAP S/4 HANA (Learning Solution) 4.6 Medium2025-04-22
CVE-2025-46251 WordPress VikRestaurants Table Reservations and Take-Away plugin <= 1.3.3 - CSRF to Stored XSS vulnerability — VikRestaurants 7.1 High2025-04-22

Vulnerabilities classified as CWE-352 (跨站请求伪造(CSRF)) represent 4751 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.