CWE-352 CVEs and Security Vulnerabilities

Filtered by CWE-352

Search

Switch to Advanced Search (Beta)

Total 7170 CVE

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2023-24384	1 Wpdevart	1 Organization Chart	2025-01-13	4.3 Medium
Cross-Site Request Forgery (CSRF) vulnerability in WpDevArt Organization chart <= 1.4.4 versions.
CVE-2022-43459	1 Captainform	1 Captainform	2025-01-13	5.4 Medium
Cross-Site Request Forgery (CSRF) vulnerability in Forms by CaptainForm – Form Builder for WordPress plugin <= 2.5.3 versions.
CVE-2023-23992	1 Automatorwp	1 Automatorwp	2025-01-13	5.4 Medium
Cross-Site Request Forgery (CSRF) vulnerability in AutomatorWP plugin <= 2.5.0 leads to object delete.
CVE-2023-23983	1 Wpdevart	1 Responsive Vertical Icon Menu	2025-01-13	5.4 Medium
Cross-Site Request Forgery (CSRF) vulnerability in wpdevart Responsive Vertical Icon Menu plugin <= 1.5.8 can lead to theme deletion.
CVE-2023-23865	1 Checkoutplugins	1 Stripe Payments For Woocommerce	2025-01-13	4.3 Medium
Cross-Site Request Forgery (CSRF) vulnerability in Checkout Plugins Stripe Payments For WooCommerce plugin <= 1.4.10 leads to settings change.
CVE-2022-47612	1 Xnau	1 Participants Database	2025-01-13	4.3 Medium
Cross-Site Request Forgery (CSRF) vulnerability in Roland Barker, xnau webdesign Participants Database plugin <= 2.4.5 leads to list column update.
CVE-2022-47179	1 Ujsoftware	1 Owm Weather	2025-01-13	4.3 Medium
Cross-Site Request Forgery (CSRF) vulnerability in Uwe Jacobs OWM Weather plugin <= 5.6.11 leads to post duplication as a draft.
CVE-2023-23984	1 Wow-company	1 Bubble Menu	2025-01-13	5.4 Medium
Cross-Site Request Forgery (CSRF) vulnerability in Wow-Company Bubble Menu – circle floating menu plugin <= 3.0.1 leading to form deletion.
CVE-2023-23974	1 Fullworksplugins	1 Quick Event Manager	2025-01-13	5.4 Medium
Cross-Site Request Forgery (CSRF) vulnerability in Fullworks Quick Event Manager plugin <= 9.7.4 affecting all registration actions (delete, delete all, edit, update).
CVE-2023-23973	1 A3rev	1 Contact Us Page - Contact People	2025-01-13	4.3 Medium
Cross-Site Request Forgery (CSRF) vulnerability in a3rev Software Contact Us Page – Contact People plugin <= 3.7.0.
CVE-2022-38468	1 Imagely	1 Nextgen Gallery	2025-01-13	4.3 Medium
Cross-Site Request Forgery (CSRF) vulnerability in Imagely WordPress Gallery Plugin – NextGEN Gallery plugin <= 3.28 leading to thumbnail alteration.
CVE-2022-40198	1 Standalonetech	1 Terawallet	2025-01-13	4.3 Medium
Cross-Site Request Forgery (CSRF) vulnerability in StandaloneTech TeraWallet – For WooCommerce plugin <= 1.3.24 leading to plugin settings change.
CVE-2022-45804	1 Robogallery	1 Robo Gallery	2025-01-13	5.4 Medium
Cross-Site Request Forgery (CSRF) vulnerability in RoboSoft Photo Gallery, Images, Slider in Rbs Image Gallery plugin <= 3.2.9 leading to galleries hierarchy change, included plugin deactivate & activate.
CVE-2022-45068	1 Mercadopago	1 Mercado Pago Payments For Woocommerce	2025-01-13	5.4 Medium
Cross-Site Request Forgery (CSRF) vulnerability in Mercado Pago Mercado Pago payments for WooCommerce plugin <= 6.3.1.
CVE-2022-46798	1 Hasthemes	1 Woolentor - Woocommerce Elementor Addons \+ Builder	2025-01-13	5.4 Medium
Cross-Site Request Forgery (CSRF) vulnerability in HasThemes ShopLentor plugin <= 2.5.1 leading to plugin settings change.
CVE-2022-46805	1 Wptrio	1 Conditional Shipping For Woocommerce	2025-01-13	5.4 Medium
Cross-Site Request Forgery (CSRF) vulnerability in Lauri Karisola / WP Trio Conditional Shipping for WooCommerce plugin <= 2.3.1 leading to activation/deactivation of plugin rulesets.
CVE-2022-46806	1 Villatheme	1 Cart All In One For Woocommerce	2025-01-13	5.4 Medium
Cross-Site Request Forgery (CSRF) vulnerability in VillaTheme Cart All In One For WooCommerce plugin <= 1.1.10 leading to cart modification.
CVE-2022-47148	1 Wpovernight	1 Woocommerce Pdf Invoices\& Packing Slips	2025-01-13	4.3 Medium
Cross-Site Request Forgery (CSRF) vulnerability in WP Overnight PDF Invoices & Packing Slips for WooCommerce plugin <= 3.2.5 leading to popup dismiss.
CVE-2022-47166	1 Voidcoders	1 Void Contact Form 7 Widget For Elementor Page Builder	2025-01-13	4.3 Medium
Cross-Site Request Forgery (CSRF) vulnerability in voidCoders Void Contact Form 7 Widget For Elementor Page Builder plugin <= 2.1.1 versions.
CVE-2022-47440	1 My Tickets Project	1 My Tickets	2025-01-13	4.3 Medium
Cross-Site Request Forgery (CSRF) vulnerability in Joseph C Dolson My Tickets plugin <= 1.9.10 versions.

« first previous Page 53 of 359. next last »