Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-352 (跨站请求伪造(CSRF)) — Vulnerability Class 4753

4753 vulnerabilities classified as CWE-352 (跨站请求伪造(CSRF)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2024-53750 WordPress PayPal Responder plugin <= 1.2 - CSRF to Stored XSS vulnerability — PayPal Responder 7.1 High2024-12-01
CVE-2024-53778 WordPress Essential Breadcrumbs plugin <= 1.1.1 - CSRF to Stored Cross Site Scripting (XSS) vulnerability — Essential Breadcrumbs 7.1 High2024-11-30
CVE-2024-11014 NEC UNIVERGE IX 安全漏洞 — UNIVERGE IX 4.3 Medium2024-11-29
CVE-2024-53732 WordPress Footer Flyout Widget plugin <= 1.1 - CSRF to Stored XSS vulnerability — Footer Flyout Widget 7.1 High2024-11-28
CVE-2024-53734 WordPress Idealien Category Enhancements plugin <= 1.2 - CSRF to Stored XSS vulnerability — Idealien Category Enhancements 7.1 High2024-11-28
CVE-2024-53736 WordPress Custom Shortcode Sidebars plugin <= 1.2 - CSRF to Stored XSS vulnerability — Custom Shortcode Sidebars 7.1 High2024-11-28
CVE-2024-10521 WordPress Contact Forms by Cimatti <= 1.9.2 - Cross-Site Request Forgery via process_bulk_action Function — Contact Forms by Cimatti 4.3 Medium2024-11-27
CVE-2024-11743 SourceCodester Best House Rental Management System POST Request ajax.php cross-site request forgery — Best House Rental Management System 4.3 Medium2024-11-26
CVE-2024-11342 Skt NURCaptcha <= 3.5.0 - Cross-Site Request Forgery to Stored Cross-Site Scripting — Skt NURCaptcha 6.1 Medium2024-11-26
CVE-2024-11673 1000 Projects Bookstore Management System cross-site request forgery — Bookstore Management System 4.3 Medium2024-11-25
CVE-2024-11415 WP-Orphanage Extended <= 1.2 - Cross-Site Request Forgery to Orphan Account Privilege Escalation — WP-Orphanage Extended 8.8 High2024-11-23
CVE-2024-9665 Zimbra GraphQL Cross-Site Request Forgery Information Disclosure Vulnerability — Zimbra 6.5 -2024-11-22
CVE-2024-11416 WIP Incoming Lite <= 1.1.1 - Cross-Site Request Forgery to Stored Cross-Site Scripting — WIP Incoming Lite 6.1 Medium2024-11-21
CVE-2024-10726 Friendly Functions for Welcart <= 1.2.4 - Cross-Site Request Forgery to Reflected Cross-Site Scripting — Friendly Functions for Welcart 6.1 Medium2024-11-21
CVE-2024-52451 WordPress Post Ideas plugin <= 2 - CSRF to SQL Injection vulnerability — Post Ideas 8.2 High2024-11-20
CVE-2024-52446 WordPress Buying Buddy IDX CRM plugin <= 1.2.8 - CSRF to PHP Object Injection vulnerability — Buying Buddy IDX CRM 8.8 High2024-11-20
CVE-2024-51669 WordPress Dynamic Widgets plugin <= 1.6.4 - Cross Site Request Forgery (CSRF) vulnerability — Dynamic Widgets 4.3 Medium2024-11-19
CVE-2024-52392 WordPress W3SPEEDSTER plugin <= 7.25 - Cross Site Request Forgery (CSRF) vulnerability — W3SPEEDSTER 6.3 Medium2024-11-19
CVE-2022-47424 WordPress ARMember plugin <= 4.0.5 - Cross Site Request Forgery (CSRF) — ARMember 5.4 Medium2024-11-19
CVE-2024-51686 WordPress Manage User Columns plugin <= 1.0.5 - Cross Site Request Forgery (CSRF) vulnerability — Manage User Columns 4.3 Medium2024-11-19
CVE-2024-43338 WordPress Crowdsignal Polls & Ratings plugin <= 3.1.3 - Cross Site Request Forgery (CSRF) vulnerability — Crowdsignal Dashboard – Polls, Surveys & more 4.3 Medium2024-11-19
CVE-2024-52388 WordPress Hebrew Date plugin <= 2.1.0 - CSRF to Stored XSS vulnerability — Hebrew Date 7.1 High2024-11-19
CVE-2024-52401 WordPress Hacklog DownloadManager plugin <=2.1.4 - CSRF to Arbitrary File Upload vulnerability — Hacklog DownloadManager 9.6 Critical2024-11-19
CVE-2024-52402 WordPress Exclusive Content Password Protect plugin <= 1.1.0 - CSRF to Arbitrary File Upload vulnerability — Exclusive Content Password Protect 9.6 Critical2024-11-19
CVE-2024-52420 WordPress Disable Admin Notices individually plugin <= 1.4.0 - Cross Site Request Forgery (CSRF) vulnerability — Disable Admin Notices individually 4.3 Medium2024-11-19
CVE-2024-50533 WordPress Domain Sharding plugin <= 1.2.1 - CSRF to Stored Cross Site Scripting (XSS) vulnerability — Domain Sharding 7.1 High2024-11-19
CVE-2024-50534 WordPress World Prayer Time plugin <= 2.0 - CSRF to Reflected Cross Site Scripting (XSS) vulnerability — World Prayer Time 7.1 High2024-11-19
CVE-2024-51632 WordPress SH Slideshow plugin <= 4.3 - CSRF to Stored Cross Site Scripting (XSS) vulnerability — SH Slideshow 7.1 High2024-11-19
CVE-2024-51631 WordPress Sticky Social Bar plugin <= 2.0 - CSRF to Stored Cross Site Scripting (XSS) vulnerability — Sticky Social Bar 7.1 High2024-11-19
CVE-2024-51634 WordPress Webriti Custom Login plugin <= 0.3 - CSRF to Reflected Cross Site Scripting (XSS) vulnerability — Webriti Custom Login 7.1 High2024-11-19

Vulnerabilities classified as CWE-352 (跨站请求伪造(CSRF)) represent 4753 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.