Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Tag: cwe-352 Clear
ID Title
CVE-2026-8938 Cross-Site Request Forgery (CSRF) in wordpress (CVE-2026-8938)
vulnerability in wordpress (CVE-2026-8938). Risk of unauthorized operations or information disclosure.
CVE-2026-8939 Cross-Site Request Forgery (CSRF) in wordpress (CVE-2026-8939)
vulnerability in wordpress (CVE-2026-8939). Risk of unauthorized operations or information disclosure.
CVE-2026-8941 Cross-Site Request Forgery (CSRF) in wordpress (CVE-2026-8941)
vulnerability in wordpress (CVE-2026-8941). Risk of unauthorized operations or information disclosure.
CVE-2026-8943 Cross-Site Request Forgery (CSRF) in wordpress (CVE-2026-8943)
vulnerability in wordpress (CVE-2026-8943). Risk of unauthorized operations or information disclosure.
CVE-2026-8708 Cross-Site Request Forgery (CSRF) in wordpress (CVE-2026-8708)
vulnerability in wordpress (CVE-2026-8708). Risk of unauthorized operations or information disclosure.
CVE-2026-7614 Cross-Site Request Forgery (CSRF) in wordpress (CVE-2026-7614)
vulnerability in wordpress (CVE-2026-7614). Risk of unauthorized operations or information disclosure.
CVE-2026-9236 Cross-Site Request Forgery (CSRF) in wordpress (CVE-2026-9236)
vulnerability in wordpress (CVE-2026-9236). Risk of unauthorized operations or information disclosure.
CVE-2026-9582 Cross-Site Request Forgery (CSRF) in CVE-2026-9582 (CVE-2026-9582)
vulnerability in CVE-2026-9582 (CVE-2026-9582). Risk of unauthorized operations or information disclosure.
CVE-2026-35220 Cross-Site Request Forgery (CSRF) in joomla (CVE-2026-35220)
vulnerability in joomla (CVE-2026-35220). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `6.1.1` or later.
CVE-2026-46620 Vulnerability in csrf (CVE-2026-46620)
vulnerability in csrf (CVE-2026-46620). Data can be tampered with by attackers. Mitigation: upgrade to `2.3.5` or later.
CVE-2026-8174 Cross-Site Request Forgery (CSRF) in wordpress (CVE-2026-8174)
vulnerability in wordpress (CVE-2026-8174). Data can be tampered with by attackers.
CVE-2026-39436 Cross-Site Request Forgery (CSRF) in csrf (CVE-2026-39436)
vulnerability in csrf (CVE-2026-39436). Risk of unauthorized operations or information disclosure.
CVE-2026-24554 Cross-Site Request Forgery (CSRF) in csrf (CVE-2026-24554)
vulnerability in csrf (CVE-2026-24554). Risk of unauthorized operations or information disclosure.
CVE-2026-9486 Cross-Site Request Forgery (CSRF) in CVE-2026-9486 (CVE-2026-9486)
vulnerability in CVE-2026-9486 (CVE-2026-9486). Risk of unauthorized operations or information disclosure.
CVE-2026-24597 Cross-Site Request Forgery (CSRF) in csrf (CVE-2026-24597)
vulnerability in csrf (CVE-2026-24597). Risk of unauthorized operations or information disclosure.
CVE-2026-24574 Cross-Site Request Forgery (CSRF) in csrf (CVE-2026-24574)
vulnerability in csrf (CVE-2026-24574). Data can be tampered with by attackers.
CVE-2018-25370 Cross-Site Request Forgery (CSRF) in CVE-2018-25370 (CVE-2018-25370)
vulnerability in CVE-2018-25370 (CVE-2018-25370). Risk of unauthorized operations or information disclosure.
CVE-2018-25363 Cross-Site Request Forgery (CSRF) in CVE-2018-25363 (CVE-2018-25363)
vulnerability in CVE-2018-25363 (CVE-2018-25363). Risk of unauthorized operations or information disclosure.
CVE-2018-25354 Cross-Site Request Forgery (CSRF) in CVE-2018-25354 (CVE-2018-25354)
vulnerability in CVE-2018-25354 (CVE-2018-25354). Risk of unauthorized operations or information disclosure.
CVE-2018-25343 Cross-Site Request Forgery (CSRF) in CVE-2018-25343 (CVE-2018-25343)
vulnerability in CVE-2018-25343 (CVE-2018-25343). Risk of unauthorized operations or information disclosure.
CVE-2026-9303 Cross-Site Request Forgery (CSRF) in CVE-2026-9303 (CVE-2026-9303)
vulnerability in CVE-2026-9303 (CVE-2026-9303). Risk of unauthorized operations or information disclosure.
CVE-2026-8340 Cross-Site Request Forgery (CSRF) in concrete5/concrete5 (CVE-2026-8340)
vulnerability in concrete5/concrete5 (CVE-2026-8340). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `9.5.1` or later.
CVE-2026-41074 Cross-Site Request Forgery (CSRF) in csrf (CVE-2026-41074)
vulnerability in csrf (CVE-2026-41074). Data can be tampered with by attackers.
CVE-2026-40864 Cross-Site Request Forgery (CSRF) in jupyterhub (CVE-2026-40864)
vulnerability in jupyterhub (CVE-2026-40864). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `5.4.5` or later.
CVE-2026-4070 Cross-Site Request Forgery (CSRF) in wordpress (CVE-2026-4070)
vulnerability in wordpress (CVE-2026-4070). Risk of unauthorized operations or information disclosure.
CVE-2026-8435 Cross-Site Request Forgery (CSRF) in concrete5/concrete5 (CVE-2026-8435)
vulnerability in concrete5/concrete5 (CVE-2026-8435). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `9.5.1` or later.
CVE-2026-8433 Cross-Site Request Forgery (CSRF) in concrete5/concrete5 (CVE-2026-8433)
vulnerability in concrete5/concrete5 (CVE-2026-8433). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `9.5.1` or later.
CVE-2026-8434 Cross-Site Request Forgery (CSRF) in concrete5/concrete5 (CVE-2026-8434)
vulnerability in concrete5/concrete5 (CVE-2026-8434). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `9.5.1` or later.
CVE-2026-8432 Cross-Site Request Forgery (CSRF) in concrete5/concrete5 (CVE-2026-8432)
vulnerability in concrete5/concrete5 (CVE-2026-8432). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `9.5.1` or later.
CVE-2026-8427 Cross-Site Request Forgery (CSRF) in concrete5/concrete5 (CVE-2026-8427)
vulnerability in concrete5/concrete5 (CVE-2026-8427). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `9.5.1` or later.
CVE-2026-8416 Cross-Site Request Forgery (CSRF) in concrete5/concrete5 (CVE-2026-8416)
vulnerability in concrete5/concrete5 (CVE-2026-8416). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `9.5.1` or later.
CVE-2026-8414 Cross-Site Request Forgery (CSRF) in concrete5/concrete5 (CVE-2026-8414)
vulnerability in concrete5/concrete5 (CVE-2026-8414). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `9.5.1` or later.
CVE-2026-8415 Cross-Site Request Forgery (CSRF) in concrete5/concrete5 (CVE-2026-8415)
vulnerability in concrete5/concrete5 (CVE-2026-8415). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `9.5.1` or later.
CVE-2026-8413 Cross-Site Request Forgery (CSRF) in concrete5/concrete5 (CVE-2026-8413)
vulnerability in concrete5/concrete5 (CVE-2026-8413). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `9.5.1` or later.
CVE-2026-8412 Cross-Site Request Forgery (CSRF) in concrete5/concrete5 (CVE-2026-8412)
vulnerability in concrete5/concrete5 (CVE-2026-8412). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `9.5.1` or later.
CVE-2026-8411 Cross-Site Request Forgery (CSRF) in concrete5/concrete5 (CVE-2026-8411)
vulnerability in concrete5/concrete5 (CVE-2026-8411). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `9.5.1` or later.
CVE-2026-8410 Cross-Site Request Forgery (CSRF) in concrete5/concrete5 (CVE-2026-8410)
vulnerability in concrete5/concrete5 (CVE-2026-8410). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `9.5.1` or later.
CVE-2026-8409 Cross-Site Request Forgery (CSRF) in concrete5/concrete5 (CVE-2026-8409)
vulnerability in concrete5/concrete5 (CVE-2026-8409). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `9.5.1` or later.
CVE-2026-7882 Cross-Site Request Forgery (CSRF) in concrete5/concrete5 (CVE-2026-7882)
vulnerability in concrete5/concrete5 (CVE-2026-7882). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `9.5.1` or later.
CVE-2026-8426 Cross-Site Request Forgery (CSRF) in concrete5/concrete5 (CVE-2026-8426)
vulnerability in concrete5/concrete5 (CVE-2026-8426). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `9.5.1` or later.
CVE-2026-8421 Cross-Site Request Forgery (CSRF) in concrete5/concrete5 (CVE-2026-8421)
vulnerability in concrete5/concrete5 (CVE-2026-8421). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `9.5.1` or later.
CVE-2026-8428 Cross-Site Request Forgery (CSRF) in concrete5/concrete5 (CVE-2026-8428)
vulnerability in concrete5/concrete5 (CVE-2026-8428). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `9.5.1` or later.
CVE-2026-8417 Cross-Site Request Forgery (CSRF) in concrete5/concrete5 (CVE-2026-8417)
vulnerability in concrete5/concrete5 (CVE-2026-8417). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `9.5.1` or later.
CVE-2026-8140 Cross-Site Request Forgery (CSRF) in concrete5/concrete5 (CVE-2026-8140)
vulnerability in concrete5/concrete5 (CVE-2026-8140). Data can be tampered with by attackers. Mitigation: upgrade to `9.5.1` or later.
CVE-2026-22880 Cross-Site Request Forgery (CSRF) in CVE-2026-22880 (CVE-2026-22880)
vulnerability in CVE-2026-22880 (CVE-2026-22880). Confidential information can be exposed externally.
CVE-2026-44925 Cross-Site Request Forgery (CSRF) in csrf (CVE-2026-44925)
vulnerability in csrf (CVE-2026-44925). Successful exploitation can lead to full system takeover.
CVE-2025-11954 Cross-Site Request Forgery (CSRF) in csrf (CVE-2025-11954)
vulnerability in csrf (CVE-2025-11954). Successful exploitation can lead to full system takeover.
CVE-2026-6405 Cross-Site Request Forgery (CSRF) in wordpress (CVE-2026-6405)
vulnerability in wordpress (CVE-2026-6405). Risk of unauthorized operations or information disclosure.
CVE-2026-8420 Cross-Site Request Forgery (CSRF) in wordpress (CVE-2026-8420)
vulnerability in wordpress (CVE-2026-8420). Risk of unauthorized operations or information disclosure.
CVE-2026-8424 Cross-Site Request Forgery (CSRF) in wordpress (CVE-2026-8424)
vulnerability in wordpress (CVE-2026-8424). Risk of unauthorized operations or information disclosure.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →