Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-352 (跨站请求伪造(CSRF)) — Vulnerability Class 4753

4753 vulnerabilities classified as CWE-352 (跨站请求伪造(CSRF)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2024-47635 WordPress TinyPNG plugin <= 3.4.3 - Cross Site Request Forgery (CSRF) vulnerability — TinyPNG 5.4 Medium2024-10-05
CVE-2024-47846 Special:DeleteCargoTable and Special:SwitchCargoTable have no CSRF protection — Mediawiki - Cargo 8.8 -2024-10-05
CVE-2024-43684 Cross-Site Request Forgery vulnerability in TimeProvider 4100 — TimeProvider 4100 7.1 -2024-10-04
CVE-2024-8520 Ultimate Member <= 2.8.6 - Cross-Site Request Forgery to Membership Status Change — Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin 5.3 Medium2024-10-04
CVE-2024-41987 Cross-Site Request Forgery (CSRF) vulnerability in TEM Opera Plus FM Family Transmitter — Opera Plus FM Family Transmitter 8.8 -2024-10-03
CVE-2024-42504 HPE IceWall Agent products, Cross-Site Request Forgery (CSRF) — HPE IceWall Agent products 4.3 Medium2024-10-03
CVE-2023-7273 Cross Site Request Forgery in Kiteworks OwnCloud — OwnCloud 6.8 Medium2024-10-01
CVE-2024-8458 PLANET Technology switch devices - Cross-site Request Forgery — GS-4210-24PL4C hardware 2.0 8.8 High2024-09-30
CVE-2024-28948 Advantech ADAM-5630 Cross-Site Request Forgery — ADAM-5630 8.0 High2024-09-27
CVE-2024-9282 bg5sbk MiniCMS page-edit.php cross-site request forgery — MiniCMS 4.3 Medium2024-09-27
CVE-2024-9281 bg5sbk MiniCMS post-edit.php cross-site request forgery — MiniCMS 4.3 Medium2024-09-27
CVE-2024-45372 Planex MZK-MF300N 安全漏洞 — MZK-DP300N 8.0AIHighAI2024-09-26
CVE-2024-47082 Strawberry GraphQL Cross-Site Request Forgery (CSRF) vulnerability — strawberry 4.6 Medium2024-09-25
CVE-2024-47305 WordPress Use Any Font plugin <= 6.3.08 - Cross Site Request Forgery (CSRF) vulnerability — Use Any Font 4.3 Medium2024-09-25
CVE-2024-47315 WordPress GiveWP – Donation Plugin and Fundraising Platform plugin <= 3.15.1 - Cross Site Request Forgery (CSRF) vulnerability — GiveWP 5.4 Medium2024-09-25
CVE-2024-20437 Cisco IOS XE Software 安全漏洞 — Cisco IOS XE Software 8.1 High2024-09-25
CVE-2024-8476 Easy PayPal Events <= 1.2.1 - Cross-Site Request Forgery to Arbitrary Post Deletion — Easy PayPal Events & Tickets 4.3 Medium2024-09-25
CVE-2024-7386 Premium Packages – Sell Digital Products Securely <= 5.9.1 - Cross-Site Request Forgery — Premium Packages – Sell Digital Products Securely 4.3 Medium2024-09-25
CVE-2024-8795 BA Book Everything <= 1.6.20 - Cross-Site Request Forgery to Email Address Update/Account Takeover — BA Book Everything 8.8 High2024-09-24
CVE-2024-8490 PropertyHive <= 2.0.19 - Cross-Site Request Forgery via save_account_details — Property Hive 8.8 High2024-09-17
CVE-2024-6862 Cross-Site Request Forgery (CSRF) in lunary-ai/lunary — lunary-ai/lunary 8.8AIHighAI2024-09-13
CVE-2024-7423 Stream <= 4.0.1 - Cross-Site Request Forgery to Arbitrary Options Update — Stream 8.8 High2024-09-13
CVE-2023-2919 Tutor LMS <= 2.7.4 - Cross-Site Request Forgery via 'addon_enable_disable' — Tutor LMS – eLearning and online course solution 4.3 Medium2024-09-10
CVE-2024-8414 SourceCodester Insurance Management System cross-site request forgery — Insurance Management System 4.3 Medium2024-09-04
CVE-2024-8319 Tourfic <= 2.11.20 - Cross-Site Request Forgery in Multiple Functions — Tourfic – Travel Booking, Hotel Booking & Car Rental WordPress Plugin 4.3 Medium2024-08-30
CVE-2024-43947 WordPress WP Armour Extended plugin <= 1.26 - Cross Site Request Forgery (CSRF) vulnerability — WP Armour Extended 5.4 Medium2024-08-29
CVE-2024-8200 Reviews Feed – Add Testimonials and Customer Reviews From Google Reviews, Yelp, TripAdvisor, and More <= 1.1.2 - Cross-Site Request Forgery — Reviews Feed – Add Testimonials and Customer Reviews From Google Reviews, Yelp, TripAdvisor, and More 4.3 Medium2024-08-27
CVE-2024-39628 WordPress Ninja Forms plugin <= 3.8.6 - Cross Site Request Forgery (CSRF) vulnerability — Ninja Forms 5.4 Medium2024-08-26
CVE-2024-39641 WordPress LearnPress plugin <= 4.2.6.8.2 - Cross Site Request Forgery (CSRF) vulnerability — LearnPress 4.3 Medium2024-08-26
CVE-2024-39645 WordPress Tutor LMS plugin <= 2.7.2 - Cross Site Request Forgery (CSRF) vulnerability — Tutor LMS 5.4 Medium2024-08-26

Vulnerabilities classified as CWE-352 (跨站请求伪造(CSRF)) represent 4753 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.