Vulnerabilities > Cross-Site Request Forgery (CSRF)
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2025-02-18 | CVE-2024-13522 | Cross-Site Request Forgery (CSRF) vulnerability in Magayo Lottery Results The magayo Lottery Results plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.0.12. | 5.4 |
| 2025-02-18 | CVE-2024-13555 | Cross-Site Request Forgery (CSRF) vulnerability in 1Clickmigration 1 Click Migration The 1 Click WordPress Migration Plugin – 100% FREE for a limited time plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.1. | 4.3 |
| 2025-02-18 | CVE-2024-13684 | Cross-Site Request Forgery (CSRF) vulnerability in Smartzminds Reset The Reset plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.6. | 8.1 |
| 2025-02-18 | CVE-2024-13852 | Cross-Site Request Forgery (CSRF) vulnerability in Backie Option Editor The Option Editor plugin for WordPress is vulnerable to Cross-Site Request Forgery in version 1.0. | 8.8 |
| 2025-02-18 | CVE-2025-0796 | Cross-Site Request Forgery (CSRF) vulnerability in Kevinbrent Wprequal The Mortgage Lead Capture System plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 8.2.10. | 4.3 |
| 2025-02-15 | CVE-2024-10581 | Cross-Site Request Forgery (CSRF) vulnerability in Designinvento Directorypress The DirectoryPress Frontend plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.7.9. | 4.3 |
| 2025-02-12 | CVE-2024-12386 | Cross-Site Request Forgery (CSRF) vulnerability in Kevonadonis WP Abstracts The WP Abstracts plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.7.3. | 5.4 |
| 2025-02-12 | CVE-2024-13437 | Cross-Site Request Forgery (CSRF) vulnerability in Heightslibrary Book a Room The Book a Room plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.9. | 4.3 |
| 2025-02-12 | CVE-2025-0808 | Cross-Site Request Forgery (CSRF) vulnerability in Wp-Property-Hive Houzez Property Feed The Houzez Property Feed plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.4.21. | 5.4 |
| 2025-02-07 | CVE-2025-25160 | Cross-Site Request Forgery (CSRF) vulnerability in Markbarnes Style Tweaker Cross-Site Request Forgery (CSRF) vulnerability in Mark Barnes Style Tweaker allows Stored XSS. | 6.1 |