Vulnerabilities (CVE)

  1. OpenCVE
  2. Vulnerabilities (CVE)
Filtered by CWE-352
Total 5841 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2023-28167 1 Vsourz 1 Cf7 Invisible Recaptcha 2023-11-17 N/A 8.8 HIGH
Cross-Site Request Forgery (CSRF) vulnerability in Vsourz Digital CF7 Invisible reCAPTCHA plugin <= 1.3.3 versions.
CVE-2022-28143 1 Jenkins 1 Proxmox 2023-11-17 4.0 MEDIUM 6.5 MEDIUM
A cross-site request forgery (CSRF) vulnerability in Jenkins Proxmox Plugin 0.7.0 and earlier allows attackers to connect to an attacker-specified host using attacker-specified username and password (perform a connection test), disable SSL/TLS validation for the entire Jenkins controller JVM as part of the connection test (see CVE-2022-28142), and test a rollback with attacker-specified parameters.
CVE-2022-28138 1 Jenkins 1 Rocketchat Notifier 2023-11-17 4.3 MEDIUM 4.3 MEDIUM
A cross-site request forgery (CSRF) vulnerability in Jenkins RocketChat Notifier Plugin 1.4.10 and earlier allows attackers to connect to an attacker-specified URL using attacker-specified credential.
CVE-2023-47550 1 Rednao 1 Donations Made Easy - Smart Donations 2023-11-17 N/A 6.1 MEDIUM
Cross-Site Request Forgery (CSRF) vulnerability in RedNao Donations Made Easy – Smart Donations allows Stored XSS.This issue affects Donations Made Easy – Smart Donations: from n/a through 4.0.12.
CVE-2023-40335 1 Cyberws 1 Cleverwise Daily Quotes 2023-11-17 N/A 6.1 MEDIUM
Cross-Site Request Forgery (CSRF) vulnerability in Jeremy O'Connell Cleverwise Daily Quotes allows Stored XSS.This issue affects Cleverwise Daily Quotes: from n/a through 3.2.
CVE-2023-46092 1 Lionscripts 1 Webmaster Tools 2023-11-17 N/A 6.1 MEDIUM
Cross-Site Request Forgery (CSRF) vulnerability in LionScripts.Com Webmaster Tools allows Stored XSS.This issue affects Webmaster Tools: from n/a through 2.0.
CVE-2023-39412 4 Apple, Google, Intel and 1 more 4 Iphone Os, Android, Unison Software and 1 more 2023-11-17 N/A 8.8 HIGH
Cross-site request forgery in some Intel Unison software may allow an authenticated user to potentially enable escalation of privilege via network access.
CVE-2023-27434 1 Wpgrim 1 Classic Editor And Classic Widgets 2023-11-17 N/A 8.8 HIGH
Cross-Site Request Forgery (CSRF) vulnerability in WPGrim Classic Editor and Classic Widgets plugin <= 1.2.5 versions.
CVE-2023-26543 1 Wp-meteor 1 Wp Meteor 2023-11-17 N/A 8.8 HIGH
Cross-Site Request Forgery (CSRF) vulnerability in Aleksandr Guidrevitch WP Meteor Website Speed Optimization Addon plugin <= 3.1.4 versions.
CVE-2023-46618 1 Bala-krishna 1 Category Seo Meta Tags 2023-11-17 N/A 8.8 HIGH
Cross-Site Request Forgery (CSRF) vulnerability in Bala Krishna, Sergey Yakovlev Category SEO Meta Tags plugin <= 2.5 versions.
CVE-2023-46619 1 Web-dorado 1 Wdsocialwidgets 2023-11-17 N/A 8.8 HIGH
Cross-Site Request Forgery (CSRF) vulnerability in WebDorado WDSocialWidgets plugin <= 1.0.15 versions.
CVE-2023-26524 1 Expresstech 1 Quiz And Survey Master 2023-11-17 N/A 8.8 HIGH
Cross-Site Request Forgery (CSRF) vulnerability in ExpressTech Quiz And Survey Master – Best Quiz, Exam and Survey Plugin for WordPress plugin <= 8.0.10 versions.
CVE-2023-26516 1 Wpindeed 1 Debug Assistant 2023-11-17 N/A 8.8 HIGH
Cross-Site Request Forgery (CSRF) vulnerability in WPIndeed Debug Assistant plugin <= 1.4 versions.
CVE-2023-26518 1 Accesspressthemes 1 Wp Tfeed 2023-11-17 N/A 8.8 HIGH
Cross-Site Request Forgery (CSRF) vulnerability in AccessPress Themes WP TFeed plugin <= 1.6.9 versions.
CVE-2023-26514 1 Wpgrim 1 Dynamic Xml Sitemaps Generator For Google 2023-11-17 N/A 8.8 HIGH
Cross-Site Request Forgery (CSRF) vulnerability in WPGrim Dynamic XML Sitemaps Generator for Google plugin <= 1.3.3 versions.
CVE-2023-28420 1 Leocaseiro 1 Custom Options Plus 2023-11-17 N/A 8.8 HIGH
Cross-Site Request Forgery (CSRF) vulnerability in Leo Caseiro Custom Options Plus plugin <= 1.8.1 versions.
CVE-2023-46620 1 Fluenx 1 Deepl Api Translation 2023-11-16 N/A 8.8 HIGH
Cross-Site Request Forgery (CSRF) vulnerability in Fluenx DeepL API translation plugin <= 2.3.9.1 versions.
CVE-2023-46625 1 Daext 1 Autolinks Manager 2023-11-16 N/A 8.8 HIGH
Cross-Site Request Forgery (CSRF) vulnerability in DAEXT Autolinks Manager plugin <= 1.10.04 versions.
CVE-2023-46629 1 Themelocation 1 Remove Add To Cart Woocommerce 2023-11-16 N/A 8.8 HIGH
Cross-Site Request Forgery (CSRF) vulnerability in themelocation Remove Add to Cart WooCommerce plugin <= 1.4.4.
CVE-2023-46636 1 Blackbam 1 Custom Header Images 2023-11-16 N/A 8.8 HIGH
Cross-Site Request Forgery (CSRF) vulnerability in David Stöckl Custom Header Images plugin <= 1.2.1 versions.