Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-352 (跨站请求伪造(CSRF)) — Vulnerability Class 4754

4754 vulnerabilities classified as CWE-352 (跨站请求伪造(CSRF)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2022-38468 WordPress NextGEN Gallery Plugin <= 3.28 is vulnerable to Cross Site Request Forgery (CSRF) — WordPress Gallery Plugin – NextGEN Gallery 4.3 Medium2023-03-01
CVE-2023-23973 WordPress Contact Us page - Contact people LITE Plugin <= 3.7.0 is vulnerable to Cross Site Request Forgery (CSRF) — Contact Us Page – Contact People 4.3 Medium2023-03-01
CVE-2023-23974 WordPress Quick Event Manager Plugin <= 9.7.4 is vulnerable to Cross Site Request Forgery (CSRF) — Quick Event Manager 5.4 Medium2023-03-01
CVE-2023-23984 WordPress Bubble Menu – circle floating menu Plugin <= 3.0.1 is vulnerable to Cross Site Request Forgery (CSRF) — Bubble Menu – circle floating menu 5.4 Medium2023-03-01
CVE-2022-47179 WordPress OWM Weather Plugin <= 5.6.11 is vulnerable to Cross Site Request Forgery (CSRF) — OWM Weather 4.3 Medium2023-02-28
CVE-2022-47612 WordPress Participants Database Plugin <= 2.4.5 is vulnerable to Cross Site Request Forgery (CSRF) — Participants Database 4.3 Medium2023-02-28
CVE-2023-23865 WordPress Stripe Payments For WooCommerce by Checkout Plugin <= 1.4.10 is vulnerable to Cross Site Request Forgery (CSRF) — Stripe Payments For WooCommerce by Checkout Plugins 4.3 Medium2023-02-28
CVE-2023-23983 WordPress Responsive Vertical Icon Menu Plugin <= 1.5.8 is vulnerable to Cross Site Request Forgery (CSRF) — Responsive Vertical Icon Menu 5.4 Medium2023-02-28
CVE-2023-23992 WordPress AutomatorWP Plugin <= 2.5.0 is vulnerable to Cross Site Request Forgery (CSRF) — AutomatorWP 5.4 Medium2023-02-28
CVE-2023-24419 WordPress Formidable Forms Plugin <= 5.5.6 is vulnerable to Cross Site Request Forgery (CSRF) — Formidable Forms 7.1 High2023-02-28
CVE-2022-43459 WordPress Forms by CaptainForm Plugin <= 2.5.3 is vulnerable to Cross Site Request Forgery (CSRF) — Forms by CaptainForm – Form Builder for WordPress 5.4 Medium2023-02-28
CVE-2023-1028 WP Meta SEO <= 4.5.3 - Cross-Site Request Forgery via 'setIgnore' — WP Meta SEO 4.3 Medium2023-02-28
CVE-2023-1068 Download Read More Excerpt Link <= 1.6.0 - Cross-Site Request Forgery to Settings Update — Read More Excerpt Link 4.3 Medium2023-02-27
CVE-2023-1033 Cross-Site Request Forgery (CSRF) in froxlor/froxlor — froxlor/froxlor 7.1 -2023-02-25
CVE-2023-1029 WP Meta SEO <= 4.5.3 - Cross-Site Request Forgery via 'regenerateSitemaps' — WP Meta SEO 4.3 Medium2023-02-24
CVE-2023-0999 SourceCodester Sales Tracker Management System cross-site request forgery — Sales Tracker Management System 4.3 Medium2023-02-24
CVE-2022-1607 Cross Site Scripting vulnerability in NE843 Pulsar Plus Controller — Pulsar Plus System Controller NE843_S 4.6 Medium2023-02-24
CVE-2023-0988 SourceCodester Online Pizza Ordering System cross-site request forgery — Online Pizza Ordering System 4.3 Medium2023-02-23
CVE-2023-24415 WordPress AI ChatBot plugin <= 4.2.8 is vulnerable to Cross Site Request Forgery (CSRF) — AI ChatBot 5.4 Medium2023-02-23
CVE-2023-24384 WordPress Organization chart Plugin <= 1.4.4 is vulnerable to Cross Site Request Forgery (CSRF) — Organization chart 4.3 Medium2023-02-23
CVE-2023-23659 WordPress MainWP Matomo Extension Plugin <= 4.0.4 is vulnerable to Cross Site Request Forgery (CSRF) — MainWP Matomo Extension 4.3 Medium2023-02-23
CVE-2023-20011 Cisco Application Policy Infrastructure Controller and Cisco Cloud Network Controller Cross-Site Request Forgery Vulnerability — Cisco Application Policy Infrastructure Controller (APIC) 8.8 High2023-02-23
CVE-2022-48320 CSRF in add-visual endpoint — Checkmk 5.4 Medium2023-02-20
CVE-2015-10081 arnoldle submitByMailPlugin edit_list.php cross-site request forgery — submitByMailPlugin 4.3 Medium2023-02-20
CVE-2023-25569 apollo-portal has potential CSRF issue — apollo 5.7 Medium2023-02-20
CVE-2023-24388 WordPress Booking calendar, Appointment Booking System Plugin <= 3.2.3 is vulnerable to Cross Site Request Forgery (CSRF) — Booking calendar, Appointment Booking System 5.4 Medium2023-02-17
CVE-2023-23899 WordPress Extensions For CF7 Plugin <= 2.0.8 is vulnerable to Cross Site Request Forgery (CSRF) — Extensions For CF7 (Contact form 7 Database, Conditional Fields and Redirection) 4.3 Medium2023-02-17
CVE-2022-47372 Stored cross-site scripting vulnerability in create event section — Pandora FMS 7.6 High2023-02-15
CVE-2022-47373 Reflected Cross Site Scripting in Search Functionality of Module Library — Pandora FMS 6.4 Medium2023-02-15
CVE-2023-23465 Media CP Media Control Panel – CSRF — Media Control Panel 9.1 Critical2023-02-15

Vulnerabilities classified as CWE-352 (跨站请求伪造(CSRF)) represent 4754 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.