Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-352 (跨站请求伪造(CSRF)) — Vulnerability Class 4751

4751 vulnerabilities classified as CWE-352 (跨站请求伪造(CSRF)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2024-13338 Webcraftic Clearfy – WordPress optimization plugin <= 2.3.1 - Cross-Site Request Forgery to Clear Cache — Clearfy Cache – WordPress optimization plugin, Minify HTML, CSS & JS, Defer 5.3 Medium2025-04-12
CVE-2024-13337 Webcraftic Clearfy – WordPress optimization plugin <= 2.3.2 - Cross-Site Request Forgery to Plugin Settings Update via 'setup-wbcr_clearfy' — Clearfy Cache – WordPress optimization plugin, Minify HTML, CSS & JS, Defer 4.3 Medium2025-04-12
CVE-2025-2871 WordPress Mega Menu – QuadMenu <= 3.2.0 - Cross-Site Request Forgery to Limited User Meta Update — QuadMenu – Mega Menu 4.3 Medium2025-04-12
CVE-2025-32282 WordPress ShareThis Dashboard for Google Analytics plugin <= 3.2.3 - Cross Site Request Forgery (CSRF) vulnerability — ShareThis Dashboard for Google Analytics 4.3 Medium2025-04-10
CVE-2025-26902 WordPress Brizy Pro plugin <= 2.8.0 - Cross Site Request Forgery (CSRF) vulnerability — Brizy Pro 4.3 Medium2025-04-09
CVE-2025-3131 ECA: Event - Condition - Action - Critical - Cross site request forgery - SA-CONTRIB-2025-031 — ECA: Event - Condition - Action 8.8AIHighAI2025-04-09
CVE-2025-31383 WordPress FrescoChat Live Chat plugin <= 3.2.6 - CSRF to Stored XSS vulnerability — FrescoChat Live Chat 7.1 High2025-04-09
CVE-2025-31385 WordPress Site Table of Contents plugin <= 0.3 - CSRF to Stored XSS vulnerability — Site Table of Contents 7.1 High2025-04-09
CVE-2025-31005 WordPress Easyfonts plugin <= 1.1.2 - Cross Site Request Forgery (CSRF) vulnerability — Easyfonts 4.3 Medium2025-04-09
CVE-2025-31023 WordPress Seo Meta Tags plugin <= 1.4 - CSRF to Privilege Escalation vulnerability — Seo Meta Tags 8.8 High2025-04-09
CVE-2025-31026 WordPress Comment Validation Reloaded plugin <= 0.5 - CSRF to Stored XSS vulnerability — Comment Validation Reloaded 7.1 High2025-04-09
CVE-2025-31032 WordPress Pagopar – WooCommerce Gateway plugin <= 2.7.1 - CSRF to Stored XSS vulnerability — Pagopar – WooCommerce Gateway 7.1 High2025-04-09
CVE-2025-31033 WordPress Buddypress Humanity plugin <= 1.2 - CSRF to Privilege Escalation vulnerability — Buddypress Humanity 9.8 Critical2025-04-09
CVE-2025-31034 WordPress Customize Login Page plugin <= 1.1 - Cross Site Request Forgery (CSRF) to Settings Change vulnerability — Customize Login Page 4.3 Medium2025-04-09
CVE-2025-31038 WordPress Essential Breadcrumbs plugin <= 1.1.1 - CSRF to Privilege Escalation vulnerability — Essential Breadcrumbs 8.8 High2025-04-09
CVE-2025-31036 WordPress WPSolr plugin <= 24.0 - CSRF to Privilege Escalation vulnerability — WPSolr 8.8 High2025-04-09
CVE-2025-31375 WordPress Scheduled plugin <= 1.0 - CSRF to Stored XSS vulnerability — Scheduled 7.1 High2025-04-09
CVE-2025-31382 WordPress Language Field plugin <= 0.9 - CSRF to Stored XSS vulnerability — Language Field 7.1 High2025-04-09
CVE-2025-31388 WordPress The World plugin <= 0.4 - CSRF to Stored XSS vulnerability — The World 7.1 High2025-04-09
CVE-2025-31390 WordPress Social Crowd plugin <= 0.9.6.1 - CSRF to Stored XSS vulnerability — Social Crowd 7.1 High2025-04-09
CVE-2025-31391 WordPress Script Compressor plugin <= 1.7.1 - CSRF to Stored XSS vulnerability — Script Compressor 7.1 High2025-04-09
CVE-2025-31392 WordPress Smart Product Gallery Slider plugin <= 1.0.4 - CSRF to Stored XSS vulnerability — Smart Product Gallery Slider 7.1 High2025-04-09
CVE-2025-31393 WordPress Social Bookmarking RELOADED plugin <= 3.18 - CSRF to Stored XSS vulnerability — Social Bookmarking RELOADED 7.1 High2025-04-09
CVE-2025-31395 WordPress Easy Custom CSS plugin <= 1.0 - CSRF to Stored XSS vulnerability — Easy Custom CSS 7.1 High2025-04-09
CVE-2025-31399 WordPress CG Scroll To Top plugin <= 3.5 - CSRF to Stored XSS vulnerability — CG Scroll To Top 7.1 High2025-04-09
CVE-2025-31400 WordPress WS Audio Player plugin <= 1.1.8 - CSRF to Stored XSS vulnerability — WS Audio Player 7.1 High2025-04-09
CVE-2025-31401 WordPress MMX – Make Me Christmas plugin <= 1.0.0 - CSRF to Stored XSS vulnerability — MMX – Make Me Christmas 7.1 High2025-04-09
CVE-2025-31402 WordPress NewsBoard Post and RSS Scroller plugin <= 1.2.12 - CSRF to Stored XSS vulnerability — NewsBoard Post and RSS Scroller 7.1 High2025-04-09
CVE-2025-31404 WordPress AF Tell a Friend plugin <= 1.4 - CSRF to Stored XSS vulnerability — AF Tell a Friend 7.1 High2025-04-09
CVE-2025-32476 WordPress Advanced Tag Lists plugin <= 1.2 - CSRF to Stored XSS vulnerability — Advanced Tag Lists 7.1 High2025-04-09

Vulnerabilities classified as CWE-352 (跨站请求伪造(CSRF)) represent 4751 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.