Filtered by CWE-352
Total 6248 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2023-40559 1 Multidots 1 Dynamic Pricing And Discount Rules For Woocommerce 2024-09-19 4.3 Medium
Cross-Site Request Forgery (CSRF) vulnerability in theDotstore Dynamic Pricing and Discount Rules for WooCommerce plugin <= 2.4.0 versions.
CVE-2023-40561 1 Multidots 1 Enhanced Ecommerce Google Analytics For Woocommerce 2024-09-19 5.4 Medium
Cross-Site Request Forgery (CSRF) vulnerability in theDotstore Enhanced Ecommerce Google Analytics for WooCommerce plugin <= 3.7.1 versions.
CVE-2023-28791 1 Webtechforce 1 Simple Org Chart 2024-09-19 4.3 Medium
Cross-Site Request Forgery (CSRF) vulnerability in Gangesh Matta Simple Org Chart plugin <= 2.3.4 versions.
CVE-2023-29235 1 Fugu 1 Maintenance Switch 2024-09-19 5.4 Medium
Cross-Site Request Forgery (CSRF) vulnerability in Fugu Maintenance Switch plugin <= 1.5.2 versions.
CVE-2023-41650 1 Remove\/hide Author\, Date\, Category Like Entry-meta Project 1 Remove\/hide Author\, Date\, Category Like Entry-meta 2024-09-19 4.3 Medium
Cross-Site Request Forgery (CSRF) vulnerability in Venugopal Remove/hide Author, Date, Category Like Entry-Meta plugin <= 2.1 versions.
CVE-2023-41654 1 Heigl 1 Authldap 2024-09-19 5.4 Medium
Cross-Site Request Forgery (CSRF) vulnerability in Andreas Heigl authLdap plugin <= 2.5.8 versions.
CVE-2023-44260 1 Rebing 1 Woocommerce Esto 2024-09-19 4.3 Medium
Cross-Site Request Forgery (CSRF) vulnerability in Mikk Mihkel Nurges, Rebing OÜ Woocommerce ESTO plugin <= 2.23.1 versions.
CVE-2023-44231 1 Nickduncan 1 Contact Form 2024-09-19 4.3 Medium
Cross-Site Request Forgery (CSRF) vulnerability in NickDuncan Contact Form plugin <= 2.0.10 versions.
CVE-2024-7161 1 Seacms 1 Seacms 2024-09-19 4.3 Medium
A vulnerability classified as problematic was found in SeaCMS 13.0. Affected by this vulnerability is an unknown functionality of the file /member.php?action=chgpwdsubmit of the component Password Change Handler. The manipulation of the argument newpwd/newpwd2 leads to cross-site request forgery. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-272575.
CVE-2023-44232 1 Nxsn 1 Wp Hide Pages 2024-09-19 4.3 Medium
Cross-Site Request Forgery (CSRF) vulnerability in Huseyin Berberoglu WP Hide Pages plugin <= 1.0 versions.
CVE-2023-44236 1 Devnath Verma 1 Wp Captcha 2024-09-19 5.4 Medium
Cross-Site Request Forgery (CSRF) vulnerability in Devnath verma WP Captcha plugin <= 2.0.0 versions.
CVE-2023-44237 1 Moriyan Jay 1 Wp Site Protector 2024-09-19 4.3 Medium
Cross-Site Request Forgery (CSRF) vulnerability in Moriyan Jay WP Site Protector plugin <= 2.0 versions.
CVE-2023-44238 1 Joakimling 1 Remove Slug From Custom Post Type 2024-09-19 4.3 Medium
Cross-Site Request Forgery (CSRF) vulnerability in Joakim Ling Remove slug from custom post type plugin <= 1.0.3 versions.
CVE-2023-44246 1 Matiass 1 Shockingly Simple Favicon 2024-09-19 4.3 Medium
Cross-Site Request Forgery (CSRF) vulnerability in Matias s Shockingly Simple Favicon plugin <= 1.8.2 versions.
CVE-2023-44240 1 Peterbutler 1 Timthumb Vulnerability Scanner 2024-09-19 4.3 Medium
Cross-Site Request Forgery (CSRF) vulnerability in Peter Butler Timthumb Vulnerability Scanner plugin <= 1.54 versions.
CVE-2023-44473 1 Dublue 1 Table Of Contents Plus 2024-09-19 5.4 Medium
Cross-Site Request Forgery (CSRF) vulnerability in Michael Tran Table of Contents Plus plugin <= 2302 versions.
CVE-2023-44993 1 Quantumcloud 1 Ai Chatbot 2024-09-19 4.3 Medium
Cross-Site Request Forgery (CSRF) vulnerability in QuantumCloud AI ChatBot plugin <= 4.7.8 versions.
CVE-2023-41660 1 Wpsynchro 1 Wp Synchro 2024-09-18 6.5 Medium
Cross-Site Request Forgery (CSRF) vulnerability in WPSynchro WP Synchro plugin <= 1.9.1 versions.
CVE-2023-41667 1 Ulfbenjaminsson 1 Wp-dtree 2024-09-18 4.3 Medium
Cross-Site Request Forgery (CSRF) vulnerability in Ulf Benjaminsson WP-dTree plugin <= 4.4.5 versions.
CVE-2023-41668 1 Leadster 1 Leadster 2024-09-18 5.4 Medium
Cross-Site Request Forgery (CSRF) vulnerability in Leadster plugin <= 1.1.2 versions.