Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-352 (跨站请求伪造(CSRF)) — Vulnerability Class 4754

4754 vulnerabilities classified as CWE-352 (跨站请求伪造(CSRF)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2024-2196 CSRF Vulnerability in aimhubio/aim — aimhubio/aim 8.1AIHighAI2024-04-10
CVE-2024-31299 WordPress ReDi Restaurant Reservation plugin <= 24.0128 - Cross Site Request Forgery (CSRF) to XSS vulnerability — ReDi Restaurant Reservation 7.1 High2024-04-10
CVE-2024-31924 WordPress EWWW Image Optimizer plugin <= 7.2.3 - Cross Site Request Forgery (CSRF) vulnerability — EWWW Image Optimizer 4.3 Medium2024-04-10
CVE-2024-0588 Paid Memberships Pro <= 2.12.10 - Cross-Site Request Forgery — Paid Memberships Pro – Content Restriction, User Registration, & Paid Subscriptions 4.3 Medium2024-04-09
CVE-2024-1315 Classified Listing <= 3.0.4 - Cross-Site Request Forgery to Account Takeover via rtcl_update_user_account — Classified Listing – AI-Powered Classified ads & Business Directory Plugin 8.8 High2024-04-09
CVE-2021-28656 Apache Zeppelin: CSRF vulnerability in the Credentials page — Apache Zeppelin 8.8AIHighAI2024-04-09
CVE-2024-31369 WordPress Soledad theme <= 8.4.2 - Cross Site Request Forgery (CSRF) vulnerability — Soledad 5.4 Medium2024-04-09
CVE-2024-31205 Saleor CSRF bypass in refreshToken mutation — saleor 4.2 Medium2024-04-08
CVE-2024-22155 WordPress WooCommerce plugin <= 8.5.2 - Cross Site Request Forgery (CSRF) vulnerability — WooCommerce 4.3 Medium2024-04-07
CVE-2024-2115 LearnPress – WordPress LMS Plugin <= 4.0.0 - Cross-Site Request Forgery to Privilege Escalation — LearnPress – WordPress LMS Plugin for Create and Sell Online Courses 8.8 High2024-04-05
CVE-2024-30252 GitHub Security Lab (GHSL) Vulnerability Report, livemarks: `GHSL-2024-015` — livemarks 2.6 Low2024-04-04
CVE-2024-29192 GHSL-2023-206 gotortc Cross-Site Request Forgery vulnerability — go2rtc 8.8 High2024-04-04
CVE-2024-25692 BUG-000154722 - Cross-site request forgery (CSRF) issue in Portal for ArcGIS — Portal for ArcGIS 5.4 Medium2024-04-04
CVE-2024-20347 Cisco Emergency Responder 安全漏洞 — Cisco Emergency Responder 4.3 Medium2024-04-03
CVE-2024-20368 Cisco Identity Services Engine 安全漏洞 — Cisco Identity Services Engine Software 6.5 Medium2024-04-03
CVE-2024-20281 Cisco Nexus Dashboard 安全漏洞 — Cisco Data Center Network Manager 7.5 High2024-04-03
CVE-2024-31105 WordPress Tax Rate Upload plugin <= 2.4.5 - CSRF leading to Cross Site Scripting (XSS) vulnerability — Tax Rate Upload 7.1 High2024-04-02
CVE-2024-31109 WordPress Woocommerce Social Media Share Buttons plugin <= 1.3.0 - CSRF to Cross Site Scripting (XSS) vulnerability — Woocommerce Social Media Share Buttons 7.1 High2024-04-02
CVE-2024-3151 Bdtask Multi-Store Inventory Management System Stock Movement Page cross-site request forgery — Multi-Store Inventory Management System 4.3 Medium2024-04-02
CVE-2024-1504 SecuPress Free — WordPress Security <= 2.2.5.1 - Cross-Site Request Forgery to Banned IP Address — SecuPress with Simple SSL – Simple and Performant Security 4.3 Medium2024-04-02
CVE-2024-3147 DedeCMS makehtml_map.php cross-site request forgery — DedeCMS 4.3 Medium2024-04-02
CVE-2024-3146 DedeCMS makehtml_rss_action.php cross-site request forgery — DedeCMS 4.3 Medium2024-04-02
CVE-2024-3145 DedeCMS makehtml_js_action.php cross-site request forgery — DedeCMS 4.3 Medium2024-04-02
CVE-2024-3144 DedeCMS makehtml_spec.php cross-site request forgery — DedeCMS 4.3 Medium2024-04-02
CVE-2024-3143 DedeCMS member_rank.php cross-site request forgery — DedeCMS 4.3 Medium2024-04-02
CVE-2024-3142 Clavister E10/E80 Setting cross-site request forgery — E10 4.3 Medium2024-04-02
CVE-2024-3135 Cross-Site Request Forgery (CSRF) Vulnerability in mudler/localai — mudler/localai 7.1 -2024-04-01
CVE-2024-30526 WordPress Easy Social Feed – Social Photos Gallery – Post Feed – Like Box plugin <= 6.5.6 - Cross Site Request Forgery (CSRF) vulnerability — Easy Social Feed 4.3 Medium2024-03-31
CVE-2024-30536 WordPress Slugs Manager plugin <= 2.6.7 - Cross Site Request Forgery (CSRF) vulnerability — Slugs Manager 4.3 Medium2024-03-31
CVE-2024-30541 WordPress LWS Optimize plugin <= 1.9.1 - Cross Site Request Forgery (CSRF) vulnerability — LWS Optimize 4.3 Medium2024-03-31

Vulnerabilities classified as CWE-352 (跨站请求伪造(CSRF)) represent 4754 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.