Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-352 (跨站请求伪造(CSRF)) — Vulnerability Class 4751

4751 vulnerabilities classified as CWE-352 (跨站请求伪造(CSRF)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-31617 WordPress PostmarkApp Email Integrator plugin <= 2.4 - CSRF to Stored XSS vulnerability — PostmarkApp Email Integrator 7.1 High2025-03-31
CVE-2025-31616 WordPress Varnish WordPress plugin <= 1.7 - CSRF to Stored XSS vulnerability — Varnish WordPress 7.1 High2025-03-31
CVE-2025-31613 WordPress AB Google Map Travel plugin <= 4.6 - CSRF to Stored XSS vulnerability — AB Google Map Travel 7.1 High2025-03-31
CVE-2025-31602 WordPress Apimo Connector plugin <= 2.6.5.2 - Cross Site Request Forgery (CSRF) vulnerability — Apimo Connector 4.3 Medium2025-03-31
CVE-2025-31601 WordPress Appointy Appointment Scheduler plugin <= 4.2.1 - CSRF to Settings Change vulnerability — Appointy Appointment Scheduler 6.5 Medium2025-03-31
CVE-2025-31600 WordPress DesignO plugin <= 2.6.0 - Cross Site Request Forgery (CSRF) vulnerability — DesignO 4.3 Medium2025-03-31
CVE-2025-31588 WordPress Elfsight Testimonials Slider plugin <= 1.0.1 - Cross Site Request Forgery (CSRF) to Settings Change vulnerability — Elfsight Testimonials Slider 5.4 Medium2025-03-31
CVE-2025-31585 WordPress Leadfox for WordPress plugin <= 2.1.9 - CSRF to Stored XSS vulnerability — Leadfox for WordPress 7.1 High2025-03-31
CVE-2025-31583 WordPress WP Copy Media URL plugin <= 2.1 - CSRF to Stored XSS vulnerability — WP Copy Media URL 7.1 High2025-03-31
CVE-2025-31570 WordPress Related Posts Widget with Thumbnails plugin <= 1.2 - CSRF to Stored XSS vulnerability — Related Posts Widget with Thumbnails 7.1 High2025-03-31
CVE-2025-31572 WordPress Multi Days Events and Multi Events in One Day Calendar plugin <= 1.1.3 - Cross Site Request Forgery (CSRF) vulnerability — Multi Days Events and Multi Events in One Day Calendar 4.3 Medium2025-03-31
CVE-2025-31569 WordPress wordpress related Posts with thumbnails plugin <= 3.0.0.1 - CSRF to Stored XSS vulnerability — wordpress related Posts with thumbnails 7.1 High2025-03-31
CVE-2025-31566 WordPress Rio Video Gallery plugin <= 2.3.6 - CSRF to Stored XSS vulnerability — Rio Video Gallery 7.1 High2025-03-31
CVE-2025-31410 WordPress WP Church Donation plugin <= 1.7 - Cross Site Request Forgery (CSRF) vulnerability — WP Church Donation 4.3 Medium2025-03-31
CVE-2025-31010 WordPress SimplyRETS Real Estate IDX plugin <= 3.0.5 - CSRF to Multiple Admin Actions vulnerability — SimplyRETS Real Estate IDX 4.3 Medium2025-03-28
CVE-2025-2863 Cross-site request forgery (CSRF) vulnerability in saTECH BCU — saTECH BCU 8.8 -2025-03-28
CVE-2025-31435 WordPress Microblog Poster plugin <= 2.1.6 - Cross Site Request Forgery (CSRF) to Stored XSS vulnerability — Microblog Poster 7.1 High2025-03-28
CVE-2025-31438 WordPress WP Supersized plugin <= 3.1.6 - Cross Site Request Forgery (CSRF) Vulnerability — WP Supersized 4.3 Medium2025-03-28
CVE-2025-31439 WordPress Browser Caching with .htaccess 1.2.1 plugin - Cross Site Request Forgery (CSRF) Vulnerability — Browser Caching with .htaccess 5.4 Medium2025-03-28
CVE-2025-31440 WordPress Terms of Use plugin <= 2.0 - Cross Site Request Forgery (CSRF) to Stored XSS vulnerability — Terms of Use 7.1 High2025-03-28
CVE-2025-31443 WordPress KK I Like It plugin <= 1.7.5.3 - CSRF to Stored XSS vulnerability — KK I Like It 7.1 High2025-03-28
CVE-2025-31444 WordPress ShowTime Slideshow plugin <= 1.6 - Cross Site Request Forgery (CSRF) to Stored XSS vulnerability — ShowTime Slideshow 7.1 High2025-03-28
CVE-2025-31447 WordPress NertWorks All in One Social Share Tools plugin <=1.26 - Cross Site Request Forgery (CSRF) Vulnerability — NertWorks All in One Social Share Tools 5.4 Medium2025-03-28
CVE-2025-31449 WordPress The Visitor Counter plugin <= 1.4.3 - Cross Site Request Forgery (CSRF) to Stored XSS vulnerability — The Visitor Counter 7.1 High2025-03-28
CVE-2025-31448 WordPress Simple Trackback Disabler plugin <= 1.4 - Cross Site Request Forgery (CSRF) Vulnerability — Simple Trackback Disabler 5.4 Medium2025-03-28
CVE-2025-31456 WordPress Ultimate Security Checker plugin <= 4.2 - Cross Site Request Forgery (CSRF) to Security Rescan vulnerability — Ultimate Security Checker 4.3 Medium2025-03-28
CVE-2025-31457 WordPress LWS SMS plugin <= 2.4.1 - Cross Site Request Forgery (CSRF) Vulnerability — LWS SMS 5.4 Medium2025-03-28
CVE-2025-31458 WordPress Video Embedder plugin <= 1.7.1 - Cross Site Request Forgery (CSRF) to Stored XSS vulnerability — Video Embedder 7.1 High2025-03-28
CVE-2025-31459 WordPress Login Alert plugin <= 0.2.1 - CSRF to Stored XSS vulnerability — Login Alert 7.1 High2025-03-28
CVE-2025-31460 WordPress OmniLeads Scripts and Tags Manager plugin <= 1.3 - CSRF to Stored XSS vulnerability — OmniLeads Scripts and Tags Manager 7.1 High2025-03-28

Vulnerabilities classified as CWE-352 (跨站请求伪造(CSRF)) represent 4751 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.