CWE-352 CVEs and Security Vulnerabilities

Filtered by CWE-352

Total 8118 CVE

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2023-32579	1 Designsandcode	1 Forget About Shortcode Buttons	2024-11-21	8.8 High
Cross-Site Request Forgery (CSRF) vulnerability in Designs & Code Forget About Shortcode Buttons plugin <= 2.1.2 versions.
CVE-2023-32512	1 Shortpixel	1 Shortpixel Adaptive Images	2024-11-21	8.8 High
Cross-Site Request Forgery (CSRF) vulnerability in ShortPixel ShortPixel Adaptive Images – WebP, AVIF, CDN, Image Optimization plugin <= 3.7.1 versions.
CVE-2023-32504	1 Kaine	1 Wise Chat	2024-11-21	5.4 Medium
Cross-Site Request Forgery (CSRF) vulnerability in Kainex Wise Chat.This issue affects Wise Chat: from n/a through 3.1.3.
CVE-2023-32502	1 Cyberwire	1 Pro Mime Types	2024-11-21	8.8 High
Cross-Site Request Forgery (CSRF) vulnerability in Sybre Waaijer Pro Mime Types – Manage file media types plugin <= 1.0.7 versions.
CVE-2023-32501	1 Vikwp	1 Vikbooking Hotel Booking Engine \& Pms	2024-11-21	8.8 High
Cross-Site Request Forgery (CSRF) vulnerability in E4J s.R.L. VikBooking Hotel Booking Engine & PMS plugin <= 1.6.1 versions.
CVE-2023-32500	1 Xtemos	1 Woodmart	2024-11-21	8.8 High
Cross-Site Request Forgery (CSRF) vulnerability in xtemos WoodMart - Multipurpose WooCommerce Theme <= 7.1.1 versions.
CVE-2023-32245	1 Wpdeveloper	1 Essential Addons For Elementor	2024-11-21	5.4 Medium
Cross-Site Request Forgery (CSRF) vulnerability in WPDeveloper Essential Addons for Elementor Pro.This issue affects Essential Addons for Elementor Pro: from n/a through 5.4.8.
CVE-2023-32125	1 Danielpowney	1 Multi Rating	2024-11-21	8.8 High
Cross-Site Request Forgery (CSRF) vulnerability in Daniel Powney Multi Rating plugin <= 5.0.6 versions.
CVE-2023-32124	1 Arulprasadj	1 Publish Confirm Message	2024-11-21	4.3 Medium
Cross-Site Request Forgery (CSRF) vulnerability in Arul Prasad J Publish Confirm Message plugin <= 1.3.1 versions.
CVE-2023-32104	1 Target-info	1 Mycurator Content Curation	2024-11-21	4.3 Medium
Cross-Site Request Forgery (CSRF) vulnerability in Mark Tilly MyCurator Content Curation plugin <= 3.74 versions.
CVE-2023-32093	1 Tpginc	1 Tpg Redirect	2024-11-21	8.8 High
Cross-Site Request Forgery (CSRF) vulnerability in Criss Swaim TPG Redirect plugin <= 1.0.7 versions.
CVE-2023-32092	1 Peepso	1 Peepso	2024-11-21	8.8 High
Cross-Site Request Forgery (CSRF) vulnerability in PeepSo Community by PeepSo – Social Network, Membership, Registration, User Profiles plugin <= 6.0.9.0 versions.
CVE-2023-32091	1 Poeditor	1 Poeditor	2024-11-21	5.4 Medium
Cross-Site Request Forgery (CSRF) vulnerability in POEditor plugin <= 0.9.4 versions.
CVE-2023-31452	1 Paessler	1 Prtg Network Monitor	2024-11-21	8.8 High
A cross-site request forgery (CSRF) token bypass was identified in PRTG 23.2.84.1566 and earlier versions that allows remote attackers to perform actions with the permissions of a victim user, provided the victim user has an active session and is induced to trigger the malicious request. This could force PRTG to execute different actions, such as creating new users. The severity of this vulnerability is high and received a score of 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
CVE-2023-31235	1 Xnau	1 Participants Database	2024-11-21	8.8 High
Cross-Site Request Forgery (CSRF) vulnerability in Roland Barker, xnau webdesign Participants Database plugin <= 2.4.9 versions.
CVE-2023-31230	1 Baidu-tongji-generator Project	1 Baidu-tongji-generator	2024-11-21	7.1 High
Cross-Site Request Forgery (CSRF) vulnerability in Haoqisir Baidu Tongji generator allows Stored XSS.This issue affects Baidu Tongji generator: from n/a through 1.0.2.
CVE-2023-31218	1 Pluginus	1 Wolf - Wordpress Posts Bulk Editor And Products Manager Professional	2024-11-21	7.1 High
Cross-Site Request Forgery (CSRF) leading to Stored Cross-Site Scripting (XSS) vulnerability in realmag777 WOLF – WordPress Posts Bulk Editor and Manager Professional plugin <= 1.0.6 versions.
CVE-2023-31216	1 Ultimatemember	1 Ultimate Member	2024-11-21	4.3 Medium
Cross-Site Request Forgery (CSRF) vulnerability in Ultimate Member plugin <= 2.6.0 versions.
CVE-2023-31174	1 Selinc	1 Sel-5037 Sel Grid Configurator	2024-11-21	7.4 High
A Cross-Site Request Forgery (CSRF) vulnerability in the Schweitzer Engineering Laboratories SEL-5037 SEL Grid Configurator could allow an attacker to embed instructions that could be executed by an authorized device operator. See Instruction Manual Appendix A and Appendix E dated 20230615 for more details. This issue affects SEL-5037 SEL Grid Configurator: before 4.5.0.20.
CVE-2023-31093	1 Chronosly-events-calendar Project	1 Chronosly-events-calendar	2024-11-21	8.8 High
Cross-Site Request Forgery (CSRF) vulnerability in Chronosly Chronosly Events Calendar plugin <= 2.6.2 versions.

« first previous Page 275 of 406. next last »