CWE-352: Cross-Site Request Forgery (CSRF)

This CSRF vulnerability in the WordPress Events Rich Snippets for Google plugin allows attackers to trick authenticated administrators into performing...

This vulnerability in the Add Custom CSS and JS WordPress plugin allows attackers to perform Cross-Site Request Forgery (CSRF) attacks that inject mal...

This Cross-Site Request Forgery (CSRF) vulnerability in the WebinarPress WordPress plugin allows attackers to trick authenticated administrators into ...

A Cross-Site Request Forgery (CSRF) vulnerability in Socomec Net Vision version 7.20 allows attackers to trick authenticated users into performing una...

This CVE describes a Cross-Site Request Forgery (CSRF) vulnerability in the Popup Box WordPress plugin that can lead to Cross-Site Scripting (XSS). At...

This CVE describes a Cross-Site Request Forgery (CSRF) vulnerability in the WordPress 'Regenerate post permalink' plugin that can lead to Cross-Site S...

This CVE describes a Cross-Site Request Forgery (CSRF) vulnerability in the Slash Admin WordPress plugin that can lead to Cross-Site Scripting (XSS). ...

A Cross-Site Request Forgery (CSRF) vulnerability in The Pack Elementor addons WordPress plugin allows attackers to trick authenticated users into per...

This vulnerability in the Easy CountDowner WordPress plugin allows attackers to perform Cross-Site Request Forgery (CSRF) attacks that lead to Stored ...

This CSRF vulnerability in the Microkid Related Posts WordPress plugin allows attackers to trick authenticated administrators into performing unintend...

This CVE describes a Cross-Site Request Forgery (CSRF) vulnerability in the WordPress Broken Images plugin that can lead to Cross-Site Scripting (XSS)...

This vulnerability in the WordPress Social Author Bio plugin allows attackers to perform Cross-Site Request Forgery (CSRF) attacks that lead to Stored...

This CVE describes a Cross-Site Request Forgery (CSRF) vulnerability in the Tooltip WordPress Tooltips plugin that can lead to Stored Cross-Site Scrip...

A Cross-Site Request Forgery (CSRF) vulnerability in Planet IGS-4215-16T2S switches allows attackers to trick authenticated users into performing unau...

This CVE describes a Cross-Site Request Forgery (CSRF) vulnerability in the ReDi Restaurant Reservation WordPress plugin that can lead to Cross-Site S...

This CSRF vulnerability in the WooCommerce Social Media Share Buttons WordPress plugin allows attackers to trick authenticated administrators into per...

This CSRF vulnerability in the BizPrint WordPress plugin allows attackers to trick authenticated users into performing unintended actions, which can l...

This CSRF vulnerability in ThemeFusion Fusion Builder allows attackers to trick authenticated WordPress administrators into performing unintended acti...

A Cross-Site Request Forgery (CSRF) vulnerability in the Optimole Super Page Cache for Cloudflare WordPress plugin allows attackers to perform stored ...

This vulnerability in the Fontific WordPress plugin allows attackers to perform Cross-Site Request Forgery (CSRF) attacks that lead to Stored Cross-Si...

This CSRF vulnerability in the BeePress WordPress plugin allows attackers to trick authenticated administrators into performing actions that inject ma...

This CSRF vulnerability in Ajax Search Lite WordPress plugin allows attackers to trick authenticated users into executing malicious actions, which can...

A Cross-Site Request Forgery (CSRF) vulnerability in PowerPack Pro for Elementor allows attackers to trick authenticated administrators into performin...

This CSRF vulnerability in the Better Anchor Links WordPress plugin allows attackers to trick authenticated administrators into performing unintended ...

This vulnerability in the Vinoj Cardoza 3D Tag Cloud WordPress plugin allows attackers to perform Cross-Site Request Forgery (CSRF) attacks that lead ...

This CSRF vulnerability in the wpForo Forum WordPress plugin allows attackers to force all users to log out by tricking authenticated administrators i...

This CSRF vulnerability in the Schema Pro WordPress plugin allows attackers to trick authenticated administrators into performing unintended actions. ...

This vulnerability allows attackers to perform Cross-Site Request Forgery (CSRF) attacks that lead to site-wide Cross-Site Scripting (XSS) in the Comp...

This CVE describes a Cross-Site Request Forgery (CSRF) vulnerability in the WordPress plugin 'Donations Made Easy – Smart Donations' that allows att...

This CVE describes a Cross-Site Request Forgery (CSRF) vulnerability in the Haoqisir Baidu Tongji generator WordPress plugin that can lead to Stored C...

This CVE describes a Cross-Site Request Forgery (CSRF) vulnerability in the WordPress Extra User Details plugin that allows attackers to perform store...

This CVE describes a Cross-Site Request Forgery (CSRF) vulnerability in the Cleverwise Daily Quotes WordPress plugin that leads to Stored Cross-Site S...

This CVE describes a Cross-Site Request Forgery (CSRF) vulnerability in the WordPress 'Auto Login New User After Registration' plugin that can lead to...

This vulnerability in the Stark Digital Category Post List Widget WordPress plugin allows attackers to perform Cross-Site Request Forgery (CSRF) attac...

This CSRF vulnerability in the LeadSquared Suite WordPress plugin allows attackers to trick authenticated administrators into performing unintended ac...

This CSRF vulnerability in the Muneeb Layer Slider WordPress plugin allows attackers to trick authenticated administrators into performing unauthorize...

This CSRF vulnerability in UpdraftPlus WordPress Backup Plugin allows attackers to trick authenticated administrators into executing malicious actions...

This CSRF vulnerability in the Muneeb Form Builder WordPress plugin allows attackers to trick authenticated administrators into performing unintended ...

This CSRF vulnerability in the Supsystic Easy Google Maps WordPress plugin allows attackers to trick authenticated administrators into performing unin...

This CSRF vulnerability in the WP Airbnb Review Slider WordPress plugin allows attackers to trick authenticated administrators into performing unautho...

This CSRF vulnerability in Rockwell Automation's FactoryTalk Vantagepoint allows attackers to trick authenticated users into performing unauthorized a...

This CSRF vulnerability in the Pods WordPress plugin allows attackers to trick authenticated administrators into performing unintended actions. It aff...

CVE-2023-28718 is a Cross-Site Request Forgery (CSRF) vulnerability in Osprey Pump Controller version 1.01 that allows attackers to perform unauthoriz...

This vulnerability in the IP2Location Country Blocker WordPress plugin allows attackers to trick logged-in administrators into blocking arbitrary coun...

The IP2Location Country Blocker WordPress plugin before version 2.26.5 lacks proper authorization and CSRF protection in its AJAX endpoint, allowing a...

This CSRF vulnerability in GitLab's GraphQL API allows attackers to execute mutations as authenticated users without their consent. It affects GitLab ...

CVE-2020-10771 is a CSRF vulnerability in Infinispan 10 that allows attackers to perform unauthorized actions via GET requests. This affects systems r...

This CSRF vulnerability in Jenkins Xray plugin allows attackers to trick authenticated users into unknowingly connecting Jenkins to attacker-controlle...

This CSRF vulnerability in Jenkins P4 Plugin allows attackers to trick authenticated users into connecting Jenkins to a malicious Perforce server with...

This CSRF vulnerability in PyroCMS allows attackers to trick authenticated admin users into unknowingly deleting arbitrary plugins via a malicious lin...