Vulnerabilities (CVE)

  1. OpenCVE
  2. Vulnerabilities (CVE)
Filtered by CWE-352
Total 5731 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2022-46794 1 Weightbasedshipping 1 Woocommerce Weight Based Shipping 2023-05-31 N/A 8.8 HIGH
Cross-Site Request Forgery (CSRF) vulnerability in weightbasedshipping.Com WooCommerce Weight Based Shipping plugin <= 5.4.1 versions.
CVE-2022-45364 1 Codedropz 1 Drag And Drop Multiple File Upload - Contact Form 7 2023-05-31 N/A 8.8 HIGH
Cross-Site Request Forgery (CSRF) vulnerability in Glen Don L. Mongaya Drag and Drop Multiple File Upload – Contact Form 7 plugin <= 1.3.6.5 versions.
CVE-2022-47136 1 Wpmanageninja 1 Ninja Tables 2023-05-31 N/A 8.8 HIGH
Cross-Site Request Forgery (CSRF) vulnerability in WPManageNinja LLC Ninja Tables – Best Data Table Plugin for WordPress plugin <= 4.3.4 versions.
CVE-2022-47178 1 Simplesharebuttons 1 Simple Share Buttons Adder 2023-05-30 N/A 8.8 HIGH
Cross-Site Request Forgery (CSRF) vulnerability in Simple Share Buttons Simple Share Buttons Adder plugin <= 8.4.7 versions.
CVE-2022-47177 1 Wpeasypay 1 Wp Easypay 2023-05-30 N/A 8.8 HIGH
Cross-Site Request Forgery (CSRF) vulnerability in WP Easy Pay WP EasyPay – Square for WordPress plugin <= 4.1 versions.
CVE-2022-47165 1 Coschedule 1 Coschedule 2023-05-30 N/A 8.8 HIGH
Cross-Site Request Forgery (CSRF) vulnerability in CoSchedule plugin <= 3.3.8 versions.
CVE-2023-30484 1 Upress 1 Enable Accessibility 2023-05-30 N/A 8.8 HIGH
Cross-Site Request Forgery (CSRF) vulnerability in uPress Enable Accessibility plugin <= 1.4 versions.
CVE-2022-47161 1 Wordpress 1 Health Check \& Troubleshooting 2023-05-30 N/A 8.8 HIGH
Cross-Site Request Forgery (CSRF) vulnerability in The WordPress.Org community Health Check & Troubleshooting plugin <= 1.5.1 versions.
CVE-2022-47159 1 Logaster 1 Logo Generator 2023-05-30 N/A 8.8 HIGH
Cross-Site Request Forgery (CSRF) vulnerability in Logaster Logaster Logo Generator plugin <= 1.3 versions.
CVE-2022-47164 1 Mage-people 1 Event Manager And Tickets Selling Plugin For Woocommerce 2023-05-30 N/A 8.8 HIGH
Cross-Site Request Forgery (CSRF) vulnerability in MagePeople Team Event Manager and Tickets Selling Plugin for WooCommerce plugin <= 3.7.7 versions.
CVE-2022-45367 1 Tychesoftwares 1 Custom Order Numbers For Woocommerce 2023-05-30 N/A 8.8 HIGH
Cross-Site Request Forgery (CSRF) vulnerability in Tyche Softwares Custom Order Numbers for WooCommerce plugin <= 1.4.0 versions.
CVE-2022-47446 1 Viadat 1 Store Locator For Wordpress With Google Maps 2023-05-30 N/A 8.8 HIGH
Cross-Site Request Forgery (CSRF) vulnerability in Viadat Creations Store Locator for WordPress with Google Maps – LotsOfLocales plugin <= 3.98.7 versions.
CVE-2022-47447 1 Wp-advanced-search Project 1 Wp-advanced-search 2023-05-30 N/A 8.8 HIGH
Cross-Site Request Forgery (CSRF) vulnerability in Mathieu Chartier WordPress WP-Advanced-Search plugin <= 3.3.8 versions.
CVE-2022-47448 1 Xiligroup 1 Xili-tidy-tags 2023-05-30 N/A 8.8 HIGH
Cross-Site Request Forgery (CSRF) vulnerability in dev.Xiligroup.Com - MS plugin <= 1.12.03 versions.
CVE-2023-27387 2 Especmic, Tandd 20 Rs-12n, Rs-12n Firmware, Rt-12n and 17 more 2023-05-30 N/A 8.8 HIGH
Cross-site request forgery (CSRF) in T&D Corporation and ESPEC MIC CORP. data logger products allows a remote unauthenticated attacker to conduct an arbitrary operation by having a logged-in user view a malicious page. Affected products and versions are as follows: T&D Corporation data logger products (TR-71W/72W all firmware versions, RTR-5W all firmware versions, WDR-7 all firmware versions, WDR-3 all firmware versions, and WS-2 all firmware versions), and ESPEC MIC CORP. data logger products (RT-12N/RS-12N all firmware versions, RT-22BN all firmware versions, and TEU-12N all firmware versions).
CVE-2023-33359 1 Piwigo 1 Piwigo 2023-05-30 N/A 4.3 MEDIUM
Piwigo 13.6.0 is vulnerable to Cross Site Request Forgery (CSRF) in the "add tags" function.
CVE-2023-25474 1 About Me 3000 Widget Project 1 About Me 3000 Widget 2023-05-30 N/A 8.8 HIGH
Cross-Site Request Forgery (CSRF) vulnerability in Csaba Kissi About Me 3000 widget plugin <= 2.2.6 versions.
CVE-2023-32998 1 Jenkins 1 Appspider 2023-05-30 N/A 8.8 HIGH
A cross-site request forgery (CSRF) vulnerability in Jenkins AppSpider Plugin 1.0.15 and earlier allows attackers to connect to an attacker-specified URL and send an HTTP POST request with a JSON payload consisting of attacker-specified credentials.
CVE-2023-33006 1 Jenkins 1 Wso2 Oauth 2023-05-30 N/A 5.4 MEDIUM
A cross-site request forgery (CSRF) vulnerability in Jenkins WSO2 Oauth Plugin 1.0 and earlier allows attackers to trick users into logging in to the attacker's account.
CVE-2022-47611 1 Hover Image Project 1 Hover Image 2023-05-30 N/A 8.8 HIGH
Cross-Site Request Forgery (CSRF) vulnerability in Julian Weinert // cs&m Hover Image plugin <= 1.4.1 versions.