| 2024-11-21 | CVE-2024-10726 | The Friendly Functions for Welcart plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.2.4. | 6.1 |
| 2024-11-21 | CVE-2024-11416 | The WIP Incoming Lite plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.1.1. | 6.1 |
| 2024-11-18 | CVE-2024-52424 | Cross-Site Request Forgery (CSRF) vulnerability in Sureshkumar Wp-Login Customizer 1.0
Cross-Site Request Forgery (CSRF) vulnerability in Suresh Kumar wp-login customizer allows Stored XSS.This issue affects wp-login customizer: from n/a through 1.0. | 6.1 |
| 2024-11-16 | CVE-2024-11118 | The 404 Error Monitor plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.1. | 5.3 |
| 2024-11-16 | CVE-2024-6628 | The EleForms – All In One Form Integration including DB for Elementor plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.9.9.9. | 4.3 |
| 2024-11-15 | CVE-2022-20853 | A vulnerability in the REST API of Cisco Expressway Series and Cisco TelePresence VCS could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack on an affected system. This vulnerability is due to insufficient CSRF protections for the web-based management interface of an affected system. | 7.4 |
| 2024-11-15 | CVE-2023-0737 | Cross-Site Request Forgery (CSRF) vulnerability in Wallabag 2.5.2
wallabag version 2.5.2 contains a Cross-Site Request Forgery (CSRF) vulnerability that allows attackers to arbitrarily delete user accounts via the /account/delete endpoint. | 6.5 |
| 2024-11-14 | CVE-2024-51679 | Cross-Site Request Forgery (CSRF) vulnerability in Appointmind
Cross-Site Request Forgery (CSRF) vulnerability in GentleSource Appointmind allows Stored XSS.This issue affects Appointmind: from n/a through 4.0.0. | 6.1 |
| 2024-11-13 | CVE-2024-10593 | The WPForms – Easy Form Builder for WordPress – Contact Forms, Payment Forms, Surveys, & More plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.9.1.6. | 4.3 |
| 2024-11-13 | CVE-2024-11143 | Cross-Site Request Forgery (CSRF) vulnerability in Kognetiks Chatbot
The Kognetiks Chatbot for WordPress plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.1.8. | 4.3 |