CVEs and Security Vulnerabilities CVEs and Security Vulnerabilities

Filtered by CWE-352

Filtered by vendor Subscriptions

Total 9160 CVE

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2023-31093	1 Chronosly-events-calendar Project	1 Chronosly-events-calendar	2026-04-28	4.3 Medium
Cross-Site Request Forgery (CSRF) vulnerability in Chronosly Chronosly Events Calendar plugin <= 2.6.2 versions.
CVE-2023-31088	1 Floating Action Button Project	1 Floating Action Button	2026-04-28	5.4 Medium
Cross-Site Request Forgery (CSRF) vulnerability in Faraz Quazi Floating Action Button plugin <= 1.2.1 versions.
CVE-2023-31087	1 Joomsky	1 Js Job Manager	2026-04-28	5.4 Medium
Cross-Site Request Forgery (CSRF) vulnerability in JoomSky JS Job Manager plugin <= 2.0.0 versions.
CVE-2023-31086	1 Ibenic	1 Simple Giveaways	2026-04-28	5.4 Medium
Cross-Site Request Forgery (CSRF) vulnerability in Igor Benic Simple Giveaways – Grow your business, email lists and traffic with contests plugin <= 2.46.0 versions.
CVE-2023-31078	1 Browserupdate	1 Wp Browserupdate	2026-04-28	4.3 Medium
Cross-Site Request Forgery (CSRF) vulnerability in Marco Steinbrecher WP BrowserUpdate plugin <= 4.4.1 versions.
CVE-2023-30478	1 Tribulant	1 Newsletters	2026-04-28	5.4 Medium
Cross-Site Request Forgery (CSRF) vulnerability in Tribulant Newsletters plugin <= 4.8.8 versions.
CVE-2023-29440	1 Presstigers	1 Simple Job Board	2026-04-28	4.3 Medium
Cross-Site Request Forgery (CSRF) vulnerability in PressTigers Simple Job Board plugin <= 2.10.3 versions.
CVE-2023-29428	1 Superbthemes	1 Superb Social Media Share Buttons And Follow Buttons	2026-04-28	5.3 Medium
Cross-Site Request Forgery (CSRF) vulnerability in SuPlugins Superb Social Media Share Buttons and Follow Buttons for WordPress plugin <= 1.1.3 versions.
CVE-2023-29426	1 Spreadshop	1 Spreadshop	2026-04-28	4.3 Medium
Cross-Site Request Forgery (CSRF) vulnerability in Robert Schulz (sprd.Net AG) Spreadshop plugin <= 1.6.5 versions.
CVE-2023-29235	1 Fugu	1 Maintenance Switch	2026-04-28	5.4 Medium
Cross-Site Request Forgery (CSRF) vulnerability in Fugu Maintenance Switch plugin <= 1.5.2 versions.
CVE-2023-25994	1 Publish To Schedule Project	1 Publish To Schedule	2026-04-28	5.4 Medium
Cross-Site Request Forgery (CSRF) vulnerability in Alex Benfica Publish to Schedule plugin <= 4.4.2 versions.
CVE-2023-25975	1 Etsy Shop Project	1 Etsy Shop	2026-04-28	5.4 Medium
Cross-Site Request Forgery (CSRF) vulnerability in Frédéric Sheedy Etsy Shop plugin <= 3.0.3 versions.
CVE-2023-23726	2 Tickera, Wordpress	2 Tickera, Wordpress	2026-04-28	5.4 Medium
Cross-Site Request Forgery (CSRF) vulnerability in Tickera.com Tickera allows Cross Site Request Forgery.This issue affects Tickera: from n/a through 3.5.1.0.
CVE-2022-47181	1 Wpexperts	1 Email Templates Customizer And Designer	2026-04-28	4.3 Medium
Cross-Site Request Forgery (CSRF) vulnerability in wpexpertsio Email Templates Customizer and Designer for WordPress and WooCommerce email-templates allows Cross Site Request Forgery.This issue affects Email Templates Customizer and Designer for WordPress and WooCommerce: from n/a through 1.4.2.
CVE-2022-40219	1 Sedlex	1 Favicon-switcher	2026-04-28	5.4 Medium
Cross-Site Request Forgery (CSRF) vulnerability in SedLex FavIcon Switcher plugin <= 1.2.11 at WordPress allows plugin settings change.
CVE-2026-41425	1 Authlib	1 Authlib	2026-04-28	5.4 Medium
Authlib is a Python library which builds OAuth and OpenID Connect servers. Prior to 1.6.11, there is no CSRF protection on the cache feature in authlib.integrations.starlette_client.OAuth. This vulnerability is fixed in 1.6.11.
CVE-2026-22359	2 Aa-team, Wordpress	2 Wordpress Movies Bulk Importer, Wordpress	2026-04-28	4.3 Medium
Cross-Site Request Forgery (CSRF) vulnerability in AA-Team Wordpress Movies Bulk Importer movies importer allows Cross Site Request Forgery.This issue affects Wordpress Movies Bulk Importer: from n/a through <= 1.0.
CVE-2020-8166	3 Debian, Redhat, Rubyonrails	4 Debian Linux, Satellite, Satellite Capsule and 1 more	2026-04-28	4.3 Medium
A CSRF forgery vulnerability exists in rails < 5.2.5, rails < 6.0.4 that makes it possible for an attacker to, given a global CSRF token such as the one present in the authenticity_token meta tag, forge a per-form CSRF token.
CVE-2025-68573	1 Wordpress	1 Wordpress	2026-04-28	5.4 Medium
Cross-Site Request Forgery (CSRF) vulnerability in Alessandro Piconi Simple Keyword to Link simple-keyword-to-link allows Cross Site Request Forgery.This issue affects Simple Keyword to Link: from n/a through <= 1.5.
CVE-2025-66531	1 Wordpress	1 Wordpress	2026-04-28	4.3 Medium
Cross-Site Request Forgery (CSRF) vulnerability in Dimitri Grassi Salon booking system salon-booking-system allows Cross Site Request Forgery.This issue affects Salon booking system: from n/a through <= 10.30.3.

« first previous Page 10 of 458. next last »