Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-352 (跨站请求伪造(CSRF)) — Vulnerability Class 4751

4751 vulnerabilities classified as CWE-352 (跨站请求伪造(CSRF)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-32273 WordPress Freetobook Responsive Widget Plugin <= 1.1 - Cross Site Request Forgery (CSRF) vulnerability — Freetobook Responsive Widget 4.3 Medium2025-04-04
CVE-2025-32272 WordPress Wishlist plugin <= 1.0.46 - Cross Site Request Forgery (CSRF) vulnerability — Wishlist 4.3 Medium2025-04-04
CVE-2025-32271 WordPress Woocommerce Role Pricing Plugin <= 3.5.6 - Cross Site Request Forgery (CSRF) vulnerability — Woocommerce Role Pricing 4.3 Medium2025-04-04
CVE-2025-32270 WordPress Broadstreet plugin <= 1.52.1 - Cross Site Request Forgery (CSRF) to Settings Change vulnerability — Broadstreet Ads 4.3 Medium2025-04-04
CVE-2025-32269 WordPress WP Zendesk for Contact Form 7, WPForms, Elementor, Formidable and Ninja Forms Plugin <= 1.1.3 - Cross Site Request Forgery (CSRF) to Settings Change vulnerability — WP Zendesk for Contact Form 7, WPForms, Elementor, Formidable and Ninja Forms 4.3 Medium2025-04-04
CVE-2025-32268 WordPress QR Code Tag for WC plugin <= 1.9.42 - Cross Site Request Forgery (CSRF) vulnerability — QR Code Tag for WC 4.3 Medium2025-04-04
CVE-2025-32267 WordPress WP to Hootsuite plugin <= 1.5.8 - Cross Site Request Forgery (CSRF) vulnerability — Post to Social Media – WordPress to Hootsuite 4.3 Medium2025-04-04
CVE-2025-32266 WordPress 404 Image Redirection (Replace Broken Images) plugin <= 1.4 - Cross Site Request Forgery (CSRF) vulnerability — 404 Image Redirection (Replace Broken Images) 4.3 Medium2025-04-04
CVE-2025-32265 WordPress JobWP plugin <= 2.3.9 - Cross Site Request Forgery (CSRF) vulnerability — JobWP 4.3 Medium2025-04-04
CVE-2025-32264 WordPress UltraAddons – Elementor Addons plugin <= 2.0.2 - Cross Site Request Forgery (CSRF) vulnerability — UltraAddons Elementor Lite 4.3 Medium2025-04-04
CVE-2025-32263 WordPress Sequential Order Numbers for WooCommerce plugin <= 3.6.2 - Cross Site Request Forgery (CSRF) vulnerability — Sequential Order Numbers for WooCommerce 4.3 Medium2025-04-04
CVE-2025-32262 WordPress RDP Wiki Embed plugin <= 1.2.20 - Cross Site Request Forgery (CSRF) Vulnerability — RDP Wiki Embed 4.3 Medium2025-04-04
CVE-2025-32261 WordPress Advanced All in One Admin Search by WP Spotlight plugin <= 1.1.1 - Cross Site Request Forgery (CSRF) Vulnerability — Advanced All in One Admin Search by WP Spotlight 4.3 Medium2025-04-04
CVE-2025-32249 WordPress DirectoryPress Plugin <= 3.6.22 - Cross Site Request Forgery (CSRF) vulnerability — DirectoryPress 5.4 Medium2025-04-04
CVE-2025-32248 WordPress SwiftXR (3D/AR/VR) Viewer plugin <= 1.0.7 - Cross Site Request Forgery (CSRF) vulnerability — SwiftXR (3D/AR/VR) Viewer 5.4 Medium2025-04-04
CVE-2025-32247 WordPress AI Content Creator plugin <= 1.2.6 - Cross Site Request Forgery (CSRF) vulnerability — AI Content Creator 5.4 Medium2025-04-04
CVE-2025-32241 WordPress Official CleverReach WooCommerce Integration plugin <= 3.4.6 - CSRF to Settings Change vulnerability — Official CleverReach Plugin for WooCommerce 6.5 Medium2025-04-04
CVE-2025-32113 WordPress Libro de Reclamaciones y Quejas plugin <= 1.0 - CSRF to Stored XSS vulnerability — Libro de Reclamaciones y Quejas 7.1 High2025-04-04
CVE-2025-32112 WordPress Sidebar Manager Light plugin <= 1.18 - CSRF to Stored XSS vulnerability — Sidebar Manager Light 7.1 High2025-04-04
CVE-2025-2797 Woffice Core <= 5.4.21 - Cross-Site Request Forgery to User Registration Approval — Woffice Core 5.4 Medium2025-04-04
CVE-2025-30908 WordPress Web Directory Free plugin <= 1.7.6 - CSRF to Cross Site Scripting (XSS) vulnerability — Web Directory Free 7.1 High2025-04-03
CVE-2025-3150 itning Student Homework Management System cross-site request forgery — Student Homework Management System 4.3 Medium2025-04-03
CVE-2024-56474 IBM TXSeries for Multiplatforms cross-site request forgery — TXSeries for Multiplatforms 4.3 Medium2025-04-02
CVE-2025-3099 Advanced Search by My Solr Server <= 2.0.5 - Cross-Site Request Forgery to Stored Cross-Site Scripting — Advanced Search by My Solr Server 6.1 Medium2025-04-02
CVE-2025-31753 WordPress Advanced Speed Increaser Plugin <= 2.2.1 - Cross Site Request Forgery (CSRF) vulnerability — Advanced Speed Increaser 4.3 Medium2025-04-01
CVE-2025-31908 WordPress JSON Structuring Markup plugin <= 0.1 - CSRF to Stored XSS vulnerability — JSON Structuring Markup 7.1 High2025-04-01
CVE-2025-31904 WordPress Ebook Downloader plugin <= 1.0 - CSRF to Stored XSS vulnerability — Ebook Downloader 7.1 High2025-04-01
CVE-2025-31906 WordPress WP Profitshare Plugin <= 1.4.9 - CSRF to Stored XSS vulnerability — WP Profitshare 7.1 High2025-04-01
CVE-2025-31888 WordPress WP Multi Store Locator Plugin <= 2.5.2 - Cross Site Request Forgery (CSRF) vulnerability — WP Multistore Locator 4.3 Medium2025-04-01
CVE-2025-31880 WordPress Pearl plugin <= 1.3.9 - Cross Site Request Forgery (CSRF) vulnerability — Pearl 4.3 Medium2025-04-01

Vulnerabilities classified as CWE-352 (跨站请求伪造(CSRF)) represent 4751 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.