Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-352 (跨站请求伪造(CSRF)) — Vulnerability Class 4753

4753 vulnerabilities classified as CWE-352 (跨站请求伪造(CSRF)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-23665 WordPress RSV GMaps plugin <= 1.5 - CSRF to Stored XSS vulnerability — RSV GMaps 7.1 High2025-01-16
CVE-2025-23661 WordPress NV Slider plugin <= 1.6 - CSRF to Stored Cross-Site Scripting vulnerability — NV Slider 7.1 High2025-01-16
CVE-2025-23654 WordPress Twitter Post plugin <= 0.1 - CSRF to Stored XSS vulnerability — Twitter Post 7.1 High2025-01-16
CVE-2025-23649 WordPress Auphonic Importer plugin <= 1.5.1 - CSRF to Stored XSS vulnerability — Auphonic Importer 7.1 High2025-01-16
CVE-2025-23664 WordPress Real Seguro Viagem plugin <= 2.0.5 - CSRF to Stored Cross-Site Scripting vulnerability — Real Seguro Viagem 7.1 High2025-01-16
CVE-2025-23660 WordPress MFPlugin plugin <= 1.3 - CSRF to Cross-Site Scripting vulnerability — MFPlugin 7.1 High2025-01-16
CVE-2025-23659 WordPress MercadoLibre Integration plugin <= 1.1 - CSRF to Stored Cross-Site Scripting vulnerability — MercadoLibre Integration 7.1 High2025-01-16
CVE-2025-23662 WordPress WP Panoramio plugin <= 1.5.0 - CSRF to Cross-Site Scripting vulnerability — WP Panoramio 7.1 High2025-01-16
CVE-2025-23640 WordPress Rename Author Slug plugin <= 1.2.0 - CSRF to Stored XSS vulnerability — Rename Author Slug 7.1 High2025-01-16
CVE-2025-23627 WordPress Comment-Emailer plugin <= 1.0.5 - CSRF to Stored Cross-Site Scripting vulnerability — Comment-Emailer 7.1 High2025-01-16
CVE-2025-23639 WordPress MDC YouTube Downloader plugin <= 3.0.0 - CSRF to Stored XSS vulnerability — MDC YouTube Downloader 7.1 High2025-01-16
CVE-2025-23573 WordPress WP Background Tile plugin <= 1.0 - CSRF to Stored XSS vulnerability — WP Background Tile 7.1 High2025-01-16
CVE-2025-23577 WordPress Word Freshener plugin <= 1.3 - CSRF to Stored XSS vulnerability — Word Freshener 7.1 High2025-01-16
CVE-2025-23618 WordPress Twitter Shortcode plugin <= 0.9 - CSRF to Stored Cross-Site Scripting vulnerability — Twitter Shortcode 7.1 High2025-01-16
CVE-2025-23559 WordPress MemeOne plugin <= 2.0.5 - CSRF to Stored XSS vulnerability — MemeOne 7.1 High2025-01-16
CVE-2025-23617 WordPress Floatbox Plus plugin <= 1.4.4 - CSRF to Stored XSS vulnerability — Floatbox Plus 7.1 High2025-01-16
CVE-2025-23567 WordPress GDReseller plugin <= 1.6 - CSRF to Stored XSS vulnerability — GDReseller 7.1 High2025-01-16
CVE-2025-23569 WordPress Shortcode in Comment plugin <= 1.1.1 - CSRF to Stored XSS vulnerability — Shortcode in Comment 7.1 High2025-01-16
CVE-2025-23572 WordPress UpDownUpDown plugin <= 1.1 - CSRF to Stored XSS vulnerability — UpDownUpDown 7.1 High2025-01-16
CVE-2025-23557 WordPress Find Your Reps plugin <= 1.2 - CSRF to Stored XSS vulnerability — Find Your Reps 7.1 High2025-01-16
CVE-2025-23560 WordPress Web Testimonials plugin <= 1.2 - CSRF to Stored XSS vulnerability — Web Testimonials 7.1 High2025-01-16
CVE-2025-23566 WordPress Custom Post plugin <= 1.0 - CSRF to Stored XSS vulnerability — Custom Post 7.1 High2025-01-16
CVE-2025-23532 WordPress MyAnime Widget plugin <= 1.0 - CSRF to Privilege Escalation vulnerability — MyAnime Widget 8.8 High2025-01-16
CVE-2025-23558 WordPress Geotagged Media plugin <= 0.3.0 - CSRF to Stored XSS vulnerability — Geotagged Media 7.1 High2025-01-16
CVE-2025-23537 WordPress add custom google tag manager plugin <= 1.0.3 - CSRF to Stored Cross-Site Scripting vulnerability — add custom google tag manager 7.1 High2025-01-16
CVE-2025-23510 WordPress WordPress Logging Service plugin <= 1.5.4 - CSRF to Stored Cross Site Scripting (XSS) vulnerability — WordPress Logging Service 7.1 High2025-01-16
CVE-2025-23511 WordPress WP-BlackCheck plugin <= 2.7.2 - CSRF to Stored Cross Site Scripting (XSS) vulnerability — WP-BlackCheck 7.1 High2025-01-16
CVE-2025-23533 WordPress WP Lyrics plugin <= 0.4.1 - CSRF to Stored XSS vulnerability — WP Lyrics 7.1 High2025-01-16
CVE-2025-23530 WordPress Custom Post Type Lockdown plugin <= 1.11 - CSRF to Privilege Escalation vulnerability — Custom Post Type Lockdown 8.8 High2025-01-16
CVE-2025-23499 WordPress Board Election plugin <= 1.0.1 - CSRF to Stored Cross Site Scripting (XSS) vulnerability — Board Election 7.1 High2025-01-16

Vulnerabilities classified as CWE-352 (跨站请求伪造(CSRF)) represent 4753 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.