Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-352 (跨站请求伪造(CSRF)) — Vulnerability Class 4751

4751 vulnerabilities classified as CWE-352 (跨站请求伪造(CSRF)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-30787 WordPress EZ SQL Reports Shortcode Widget and DB Backup plugin <= 5.25.08 - CSRF to Stored XSS vulnerability — EZ SQL Reports Shortcode Widget and DB Backup 7.1 High2025-03-27
CVE-2025-30783 WordPress WP Google Review Slider plugin <= 16.0 - CSRF to SQL Injection vulnerability — WP Google Review Slider 8.2 High2025-03-27
CVE-2025-30769 WordPress WIP WooCarousel Lite plugin <= 1.1.7 - Cross Site Request Forgery (CSRF) to Stored XSS vulnerability — WIP WooCarousel Lite 7.1 High2025-03-27
CVE-2025-30764 WordPress Football Pool plugin <= 2.12.2 - Cross Site Request Forgery (CSRF) to Settings Change vulnerability — Football Pool 4.3 Medium2025-03-27
CVE-2025-2832 mingyuefusu 明月复苏 tushuguanlixitong 图书管理系统 cross-site request forgery — tushuguanlixitong 图书管理系统 4.3 Medium2025-03-27
CVE-2025-20228 Maintenance mode state change of App Key Value Store (KVStore) through a Cross-Site Request Forgery (CSRF) in Splunk Enterprise — Splunk Enterprise 6.5 Medium2025-03-26
CVE-2025-2319 EZ SQL Reports Shortcode Widget and DB Backup 4.11.13 - 5.25.08 - Cross-Site Request Forgery to Remote Code Execution — EZ SQL Reports Shortcode Widget and DB Backup 8.8 High2025-03-25
CVE-2024-13710 Estatebud – Properties & Listings <= 5.5.0 - Cross-Site Request Forgery to Settings Update — Estatebud – Properties & Listings 4.3 Medium2025-03-25
CVE-2025-1320 teachPress <= 9.0.9 - Cross-Site Request Forgery to Import Delete — teachPress 4.3 Medium2025-03-25
CVE-2025-30620 WordPress WP Odoo Form Integrator plugin <=1.1.0 - CSRF to Stored XSS vulnerability — WP Odoo Form Integrator 7.1 High2025-03-24
CVE-2025-30621 WordPress Translator plugin <= 0.3 - CSRF to Stored XSS vulnerability — Translator 7.1 High2025-03-24
CVE-2025-30619 WordPress SpeakPipe plugin <= 0.2 - Cross Site Request Forgery (CSRF) Vulnerability — SpeakPipe 5.4 Medium2025-03-24
CVE-2025-30617 WordPress Rewrite plugin <= 0.2.1 - Cross Site Request Forgery (CSRF) Vulnerability — Rewrite 4.3 Medium2025-03-24
CVE-2025-30615 WordPress WP e-Commerce Style Email plugin <= 0.6.2 - CSRF to Remote Code Execution vulnerability — WP e-Commerce Style Email 9.6 Critical2025-03-24
CVE-2025-30612 WordPress Replace Default Words plugin <= 1.3 - Cross Site Request Forgery (CSRF) to Stored XSS vulnerability — Replace Default Words 7.1 High2025-03-24
CVE-2025-30608 WordPress SQL Backup plugin <= 3.5.2 - Cross Site Request Forgery (CSRF) Vulnerability — WordPress SQL Backup 7.1 High2025-03-24
CVE-2025-30603 WordPress CopyLink plugin <= 1.1 - CSRF to Stored XSS vulnerability — CopyLink 7.1 High2025-03-24
CVE-2025-30601 WordPress Flipdish Ordering System plugin <= 1.5.2 - Cross Site Request Forgery (CSRF) to Settings Change vulnerability — Flipdish Ordering System 4.3 Medium2025-03-24
CVE-2025-30598 WordPress OSS Upload plugin <= 4.8.9 Cross Site Request Forgery (CSRF) Vulnerability — OSS Upload 4.3 Medium2025-03-24
CVE-2025-30588 WordPress Map Contact plugin <= 3.0.4 - CSRF to Stored XSS Vulnerability — Map Contact 7.1 High2025-03-24
CVE-2025-30587 WordPress LH OGP Meta plugin <= 1.73 - CSRF to Stored XSS Vulnerability — LH OGP Meta 7.1 High2025-03-24
CVE-2025-30585 WordPress Generate Post Thumbnails plugin <= 0.8 - Cross Site Request Forgery (CSRF) Vulnerability — Generate Post Thumbnails 4.3 Medium2025-03-24
CVE-2025-30586 WordPress cTabs plugin <= 1.3 - CSRF to Stored XSS Vulnerability — cTabs 7.1 High2025-03-24
CVE-2025-30584 WordPress AlphaOmega Captcha & Anti-Spam Filter plugin <= 3.3 - CSRF to Stored XSS Vulnerability — AlphaOmega Captcha &amp; Anti-Spam Filter 7.1 High2025-03-24
CVE-2025-30583 WordPress Pro Rank Tracker plugin <= 1.0.0 - CSRF to Stored XSS Vulnerability — Pro Rank Tracker 7.1 High2025-03-24
CVE-2025-30578 WordPress AdSense Privacy Policy plugin <= 1.1.1 - Cross Site Request Forgery (CSRF) to Stored XSS Vulnerability — AdSense Privacy Policy 7.1 High2025-03-24
CVE-2025-30576 WordPress Hacklog Remote Image Autosave plugin <= 2.1.0 - Cross Site Request Forgery (CSRF) Vulnerability — Hacklog Remote Image Autosave 4.3 Medium2025-03-24
CVE-2025-30577 WordPress Browser Address Bar Color plugin <= 3.3 - Cross Site Request Forgery (CSRF) to Stored XSS Vulnerability — Browser Address Bar Color 7.1 High2025-03-24
CVE-2025-30572 WordPress Simple Rating plugin <= 1.4 - Cross Site Request Forgery (CSRF) to Stored XSS vulnerability — Simple Rating 7.1 High2025-03-24
CVE-2025-30568 WordPress Super Static Cache plugin <= 3.3.5 - Cross Site Request Forgery (CSRF) Vulnerability — Super Static Cache 4.3 Medium2025-03-24

Vulnerabilities classified as CWE-352 (跨站请求伪造(CSRF)) represent 4751 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.