CWE-352 (跨站请求伪造(CSRF)) — Vulnerability Class 4753

4753 vulnerabilities classified as CWE-352 (跨站请求伪造(CSRF)). AI Chinese analysis included.

CVE ID	Title	CVSS	Severity	Published
CVE-2024-30546	WordPress Login With Ajax plugin <= 4.1 - Cross Site Request Forgery (CSRF) vulnerability — Login With Ajax	4.3	Medium	2024-04-15
CVE-2024-31373	WordPress E2Pdf plugin <= 1.20.27 - Cross Site Request Forgery (CSRF) vulnerability — e2pdf	5.4	Medium	2024-04-15
CVE-2024-31374	WordPress AppPresser plugin <= 4.3.0 - Cross Site Request Forgery (CSRF) vulnerability — AppPresser	4.3	Medium	2024-04-15
CVE-2024-31376	WordPress Dashboard To-Do List plugin <= 1.3.1 - Cross Site Request Forgery (CSRF) vulnerability — Dashboard To-Do List	4.3	Medium	2024-04-15
CVE-2024-31378	WordPress MailChimp Forms by MailMunch plugin <= 3.2.1 - Cross Site Request Forgery (CSRF) vulnerability — MailChimp Forms by MailMunch	5.4	Medium	2024-04-15
CVE-2024-31379	WordPress Smash Balloon Social Post Feed plugin <= 4.2.1 - Cross Site Request Forgery (CSRF) vulnerability — Smash Balloon Social Post Feed	4.3	Medium	2024-04-15
CVE-2024-31381	WordPress Spotlight Social Feeds plugin <= 1.6.10 - Cross Site Request Forgery (CSRF) vulnerability — Spotlight Social Media Feeds	4.3	Medium	2024-04-15
CVE-2024-31382	WordPress Blocksy theme <= 2.0.22 - Cross Site Request Forgery (CSRF) vulnerability — Blocksy	4.3	Medium	2024-04-15
CVE-2024-31383	WordPress PopularFX theme <= 1.2.4 - Cross Site Request Forgery (CSRF) vulnerability — PopularFX	4.3	Medium	2024-04-15
CVE-2024-31384	WordPress Spa and Salon theme <= 1.2.7 - Cross Site Request Forgery (CSRF) vulnerability — Spa and Salon	4.3	Medium	2024-04-15
CVE-2024-31385	WordPress ReDi Restaurant Reservation plugin <= 24.0128 - Cross Site Request Forgery (CSRF) vulnerability — ReDi Restaurant Reservation	4.3	Medium	2024-04-15
CVE-2024-31388	WordPress Tablesome plugin <= 1.0.25 - Cross Site Request Forgery (CSRF) vulnerability — Table & Contact Form 7 Database – Tablesome	4.3	Medium	2024-04-15
CVE-2024-31389	WordPress MihanPanel plugin < 12.7 - Cross Site Request Forgery (CSRF) vulnerability — MihanPanel	5.4	Medium	2024-04-15
CVE-2024-31422	WordPress Favicon by RealFaviconGenerator plugin <= 1.3.29 - Cross Site Request Forgery (CSRF) vulnerability — Favicon	4.3	Medium	2024-04-15
CVE-2024-31424	WordPress Login with Phone Number plugin <= 1.6.93 - Cross Site Request Forgery (CSRF) vulnerability — Login with phone number	8.8	High	2024-04-15
CVE-2024-31425	WordPress Amelia plugin <= 1.0.95 - Cross Site Request Forgery (CSRF) vulnerability — Amelia	5.4	Medium	2024-04-15
CVE-2024-31426	WordPress Inline Related Posts plugin <= 3.3.1 - Cross Site Request Forgery (CSRF) vulnerability — Inline Related Posts	4.3	Medium	2024-04-15
CVE-2024-31427	WordPress Marker.io plugin <= 1.1.8 - Cross Site Request Forgery (CSRF) vulnerability — Marker.io	4.3	Medium	2024-04-15
CVE-2024-22438	HPE OfficeConnect 1820 Network switches, Cross-Site Request Forgery (CSRF) — HPE OfficeConnect 1820 Network switches	3.5	Low	2024-04-15
CVE-2024-31428	WordPress The Conference theme <= 1.2.0 - Cross Site Request Forgery (CSRF) vulnerability — The Conference	4.3	Medium	2024-04-15
CVE-2024-31429	WordPress Sarada Lite theme <= 1.1.2 - Cross Site Request Forgery (CSRF) vulnerability — Sarada Lite	4.3	Medium	2024-04-15
CVE-2024-31431	WordPress Product Input Fields for WooCommerce plugin <= 1.7.0 - Cross Site Request Forgery (CSRF) vulnerability — Product Input Fields for WooCommerce	4.3	Medium	2024-04-15
CVE-2024-31433	WordPress The Events Calendar plugin <= 6.3.0 - Cross Site Request Forgery (CSRF) vulnerability — The Events Calendar	4.3	Medium	2024-04-15
CVE-2024-31434	WordPress Newsletter plugin <= 8.0.6 - Cross Site Request Forgery (CSRF) vulnerability — Newsletter	5.4	Medium	2024-04-15
CVE-2024-31920	WordPress Currency per Product for WooCommerce plugin <= 1.6.0 - Cross Site Request Forgery (CSRF) vulnerability — Currency per Product for WooCommerce	4.3	Medium	2024-04-15
CVE-2024-31921	WordPress Ultimate Product Catalog plugin <= 5.2.15 - Cross Site Request Forgery (CSRF) vulnerability — Ultimate Product Catalogue	4.3	Medium	2024-04-15
CVE-2024-31922	WordPress Hosting Benchmark tool plugin <= 1.3.6 - Cross Site Request Forgery (CSRF) vulnerability — WordPress Hosting Benchmark tool	4.3	Medium	2024-04-15
CVE-2024-31923	WordPress Feather Login Page plugin <= 1.1.5 - Cross Site Request Forgery (CSRF) vulnerability — Feather Login Page	4.3	Medium	2024-04-15
CVE-2024-31933	WordPress Page Builder: Live Composer plugin <= 1.5.35 - Cross Site Request Forgery (CSRF) vulnerability — Page Builder: Live Composer	5.4	Medium	2024-04-15
CVE-2024-31938	WordPress NewsXpress theme <= 1.0.7 - Cross Site Request Forgery (CSRF) vulnerability — NewsXpress	4.3	Medium	2024-04-15

Vulnerabilities classified as CWE-352 (跨站请求伪造(CSRF)) represent 4753 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.

Goal Reached Thanks to every supporter — we hit 100%!

CWE-352 (跨站请求伪造(CSRF)) — Vulnerability Class 4753