Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-352 (跨站请求伪造(CSRF)) — Vulnerability Class 4754

4754 vulnerabilities classified as CWE-352 (跨站请求伪造(CSRF)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2024-2277 Bdtask G-Prescription Gynaecology & OBS Consultation Software Password Reset change_password_save cross-site request forgery — G-Prescription Gynaecology & OBS Consultation Software 4.3 Medium2024-03-08
CVE-2024-1760 Appointment Booking Calendar — Simply Schedule Appointments Booking Plugin <= 1.6.6.20 - Cross-Site Request Forgery to Plugin Data Reset — Appointment Booking Calendar — Simply Schedule Appointments Booking Plugin 4.3 Medium2024-03-06
CVE-2024-2134 Bdtask Hospita AutoManager Investigation Report cross-site request forgery — Hospita AutoManager 4.3 Medium2024-03-03
CVE-2023-6326 Master Slider - Responsive Touch Slider <= 3.9.10 - Cross-Site Request Forgery via process_bulk_action — Master Slider – Responsive Touch Slider 5.4 Medium2024-03-02
CVE-2024-1592 Complianz – GDPR/CCPA Cookie Consent <= 6.5.6 - Cross-Site Request Forgery to Data Request Deletion — Complianz – GDPR/CCPA Cookie Consent 4.3 Medium2024-03-02
CVE-2023-28949 IBM Engineering Requirements Management cross-site request forgery — Engineering Requirements Management 6.5 Medium2024-03-01
CVE-2024-1976 Marketing Optimizer <= 20200925 - Cross-Site Request Forgery to Stored Cross-Site Scripting — Marketing Optimizer 4.3 Medium2024-02-29
CVE-2024-21752 WordPress Ajax Search Lite Plugin <= 4.11.4 is vulnerable to Cross Site Scripting (XSS) — Ajax Search Lite 7.1 High2024-02-29
CVE-2023-51531 WordPress Thrive Automator Plugin <= 1.17 is vulnerable to Cross Site Request Forgery (CSRF) — Thrive Automator 5.4 Medium2024-02-29
CVE-2023-51530 WordPress GS Logo Slider Plugin <= 3.5.1 is vulnerable to Cross Site Request Forgery (CSRF) — Logo Slider – Logo Showcase, Logo Carousel, Logo Gallery and Client Logo Presentation 4.3 Medium2024-02-29
CVE-2023-51529 WordPress HT Mega Plugin <= 2.3.3 is vulnerable to Cross Site Request Forgery (CSRF) — HT Mega – Absolute Addons For Elementor 4.3 Medium2024-02-29
CVE-2023-51528 WordPress GPT3 AI Content Writer Plugin <= 1.8.12 is vulnerable to Cross Site Request Forgery (CSRF) — AI Power: Complete AI Pack – Powered by GPT-4 4.3 Medium2024-02-29
CVE-2023-51696 WordPress Spam protection, AntiSpam, FireWall by CleanTalk Plugin <= 6.20 is vulnerable to Cross Site Request Forgery (CSRF) — Spam protection, Anti-Spam, FireWall by CleanTalk 4.3 Medium2024-02-29
CVE-2024-23910 ELECOM WRC-1167GS2-B 安全漏洞 — WRC-1167GS2-B 8.8AIHighAI2024-02-28
CVE-2023-51533 WordPress Ecwid Shopping Cart Plugin <= 6.12.4 is vulnerable to Cross Site Request Forgery (CSRF) — Ecwid Ecommerce Shopping Cart 5.4 Medium2024-02-28
CVE-2024-27948 WordPress Atahualpa Theme <= 3.7.24 is vulnerable to Cross Site Request Forgery (CSRF) — Atahualpa 5.4 Medium2024-02-28
CVE-2023-51683 WordPress Easy PayPal Buy Now Button Plugin <= 1.8.1 is vulnerable to Cross Site Request Forgery (CSRF) — Easy PayPal & Stripe Buy Now Button 5.4 Medium2024-02-28
CVE-2023-51681 WordPress Duplicator Plugin <= 1.5.7 is vulnerable to Cross Site Request Forgery (CSRF) — Duplicator – WordPress Migration & Backup Plugin 6.5 Medium2024-02-28
CVE-2023-52223 WordPress MailerLite – WooCommerce integration Plugin <= 2.0.8 is vulnerable to Cross Site Request Forgery (CSRF) — MailerLite – WooCommerce integration 5.4 Medium2024-02-28
CVE-2023-52226 WordPress Advanced Flamingo plugin <= 1.0 - Cross Site Request Forgery (CSRF) vulnerability — Advanced Flamingo 4.3 Medium2024-02-28
CVE-2024-21749 WordPress 1 click disable all Plugin <= 1.0.1 is vulnerable to Cross Site Request Forgery (CSRF) — 1 click disable all 5.4 Medium2024-02-28
CVE-2024-23519 WordPress Email Before Download Plugin <= 6.9.7 is vulnerable to Cross Site Request Forgery (CSRF) — Email Before Download 4.3 Medium2024-02-28
CVE-2024-24701 WordPress Setka Editor Plugin <= 2.1.20 is vulnerable to Cross Site Request Forgery (CSRF) — A no-code page builder for beautiful performance-based content 4.3 Medium2024-02-28
CVE-2024-24702 WordPress Page Restrict Plugin <= 2.5.5 is vulnerable to Cross Site Request Forgery (CSRF) — Page Restrict 4.3 Medium2024-02-28
CVE-2024-24705 WordPress Accessibility Plugin <= 1.0.6 is vulnerable to Cross Site Request Forgery (CSRF) — Accessibility 5.4 Medium2024-02-28
CVE-2024-24708 WordPress W3SPEEDSTER Plugin <= 7.19 is vulnerable to Cross Site Request Forgery (CSRF) — W3SPEEDSTER 4.3 Medium2024-02-28
CVE-2024-25930 WordPress Custom Order Statuses for WooCommerce Plugin <= 1.5.2 is vulnerable to Cross Site Request Forgery (CSRF) — Custom Order Statuses for WooCommerce 4.3 Medium2024-02-28
CVE-2024-25931 WordPress Heureka Plugin <= 1.0.8 is vulnerable to Cross Site Request Forgery (CSRF) — Heureka 4.3 Medium2024-02-28
CVE-2024-25932 WordPress Change Table Prefix plugin <= 2.0 - Cross Site Request Forgery (CSRF) vulnerability — Change Table Prefix 4.3 Medium2024-02-28
CVE-2024-1719 Easy PayPal & Stripe Buy Now Button <= 1.8.3 & Contact Form 7 – PayPal & Stripe Add-on <= 2.1 - Cross-Site Request Forgery to Settings Update — Easy PayPal & Stripe Buy Now Button 4.3 Medium2024-02-28

Vulnerabilities classified as CWE-352 (跨站请求伪造(CSRF)) represent 4754 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.