Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-352 (跨站请求伪造(CSRF)) — Vulnerability Class 4753

4753 vulnerabilities classified as CWE-352 (跨站请求伪造(CSRF)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2024-7420 Insert PHP Code Snippet <= 1.3.6 - Cross-Site Request Forgery to Code Snippet Activate/Deactivate/Deletion — Insert PHP Code Snippet 5.8 Medium2024-08-15
CVE-2024-39408 Adobe Commerce | Cross-Site Request Forgery (CSRF) (CWE-352) — Adobe Commerce 4.3 Medium2024-08-14
CVE-2024-39410 Adobe Commerce | Cross-Site Request Forgery (CSRF) (CWE-352) — Adobe Commerce 4.3 Medium2024-08-14
CVE-2024-39409 Adobe Commerce | Cross-Site Request Forgery (CSRF) (CWE-352) — Adobe Commerce 4.3 Medium2024-08-14
CVE-2024-38724 WordPress Contact Form 7 Summary and Print plugin <= 1.2.5 - Cross Site Request Forgery (CSRF) to XSS vulnerability — Contact Form 7 Summary and Print 7.1 High2024-08-13
CVE-2024-7662 SourceCodester Car Driving School Management System manag_package.php save_package cross-site request forgery — Car Driving School Management System 4.3 Medium2024-08-11
CVE-2024-7661 SourceCodester Car Driving School Management System index.php save_users cross-site request forgery — Car Driving School Management System 4.3 Medium2024-08-11
CVE-2024-7574 Christmasify! <= 1.5.5 - Cross-Site Request Forgery to Stored Cross-Site Scripting — Christmasify! 6.1 Medium2024-08-10
CVE-2024-7645 SourceCodester Clinics Patient Management System User Page users.php cross-site request forgery — Clinics Patient Management System 4.3 Medium2024-08-09
CVE-2024-7492 MainWP Child Reports <= 2.2 - Cross-Site Request Forgery to Arbitrary Options Update — MainWP Child Reports 8.8 High2024-08-08
CVE-2024-41811 ipl/web susceptible to Cross-Site Request Forgery (CSRF) — ipl-web 3.9 Low2024-08-05
CVE-2024-7460 OSWAPP Warehouse Inventory System change_password.php cross-site request forgery — Warehouse Inventory System 4.3 Medium2024-08-04
CVE-2024-7459 OSWAPP Warehouse Inventory System edit_account.php cross-site request forgery — Warehouse Inventory System 4.3 Medium2024-08-04
CVE-2024-38776 WordPress WP GoToWebinar plugin <= 15.7 - CSRF to XSS vulnerability — WP GoToWebinar 7.1 High2024-08-02
CVE-2024-3238 WordPress Menu Plugin — Superfly Responsive Menu <= 5.0.29 - Cross-Site Request Forgery to Arbitrary File Deletion — WordPress Menu Plugin — Superfly Responsive Menu 8.8 High2024-08-02
CVE-2024-7367 SourceCodester Simple Realtime Quiz System ajax.php cross-site request forgery — Simple Realtime Quiz System 4.3 Medium2024-08-01
CVE-2024-32863 exacqVison - CSRF issues with Web Service — exacqVision 6.8 Medium2024-08-01
CVE-2024-7360 SourceCodester Tracking Monitoring Management System ajax.php cross-site request forgery — Tracking Monitoring Management System 4.3 Medium2024-08-01
CVE-2024-6040 Missing client_id in parisneo/lollms-webui — parisneo/lollms 8.8AIHighAI2024-08-01
CVE-2024-40883 ELECOM WRC-X6000XS-G、WRC-X1500GS-B、WRC-X1500GSA-B 安全漏洞 — WRC-X1500GS-B 8.8AIHighAI2024-08-01
CVE-2024-3083 Plug and Track Sensor Net Connect 安全漏洞 — Sensor Net Connect V2 8.3 High2024-07-31
CVE-2023-38001 IBM Aspera Orchestrator cross-site request forgery — Aspera Orchestrator 6.5 Medium2024-07-30
CVE-2024-7226 SourceCodester Medicine Tracker System Password Change cross-site request forgery — Medicine Tracker System 4.3 Medium2024-07-30
CVE-2024-7169 SourceCodester School Fees Payment System ajax.php cross-site request forgery — School Fees Payment System 4.3 Medium2024-07-28
CVE-2024-7161 SeaCMS Password Change cross-site request forgery — SeaCMS 4.3 Medium2024-07-28
CVE-2024-7106 Spina CMS media_folders cross-site request forgery — CMS 4.3 Medium2024-07-25
CVE-2024-7065 Spina CMS cross-site request forgery — CMS 4.3 Medium2024-07-24
CVE-2024-3246 LiteSpeed Cache <= 6.2.0.1 - Cross-Site Request Forgery to Stored Cross-Site Scripting — LiteSpeed Cache 6.1 Medium2024-07-24
CVE-2024-6751 Social Auto Poster <= 5.3.14 - Cross-Site Request Forgery via Multiple Functions — Social Auto Poster 6.3 Medium2024-07-24
CVE-2024-5804 Conditional Fields for Contact Form 7 <= 2.4.13 - Cross-Site Request Forgery to Plugin Setting Reset — Conditional Fields for Contact Form 7 4.3 Medium2024-07-20

Vulnerabilities classified as CWE-352 (跨站请求伪造(CSRF)) represent 4753 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.