Vulnerabilities > Cross-Site Request Forgery (CSRF)

DATE CVE VULNERABILITY TITLE RISK
2025-03-11 CVE-2025-28860 Cross-Site Request Forgery (CSRF) vulnerability in Ppdpurveyor Google News Editors Picks Feed Generator
Cross-Site Request Forgery (CSRF) vulnerability in PPDPurveyor Google News Editors Picks Feed Generator allows Stored XSS.
network
low complexity
ppdpurveyor CWE-352
6.1
2025-03-11 CVE-2025-28861 Cross-Site Request Forgery (CSRF) vulnerability in Bhzad WP Jquery Persian Datepicker 0.1.0
Cross-Site Request Forgery (CSRF) vulnerability in bhzad WP jQuery Persian Datepicker allows Stored XSS.
network
low complexity
bhzad CWE-352
6.1
2025-03-11 CVE-2025-28862 Cross-Site Request Forgery (CSRF) vulnerability in Venugopal Comment Date and Gravatar Remover 1.0
Cross-Site Request Forgery (CSRF) vulnerability in Venugopal Comment Date and Gravatar remover allows Cross Site Request Forgery.
network
low complexity
venugopal CWE-352
8.8
2025-03-11 CVE-2025-28863 Cross-Site Request Forgery (CSRF) vulnerability in Carlosminatti Delete Original Image
Cross-Site Request Forgery (CSRF) vulnerability in Carlos Minatti Delete Original Image allows Cross Site Request Forgery.
network
low complexity
carlosminatti CWE-352
8.8
2025-03-11 CVE-2025-28864 Cross-Site Request Forgery (CSRF) vulnerability in Planetstudio Builder for Contact Form 7
Cross-Site Request Forgery (CSRF) vulnerability in Planet Studio Builder for Contact Form 7 by Webconstruct allows Cross Site Request Forgery.
network
low complexity
planetstudio CWE-352
8.8
2025-03-11 CVE-2025-28866 Cross-Site Request Forgery (CSRF) vulnerability in Smerriman Login Logger
Cross-Site Request Forgery (CSRF) vulnerability in smerriman Login Logger allows Cross Site Request Forgery.
network
low complexity
smerriman CWE-352
8.8
2025-03-11 CVE-2025-28867 Cross-Site Request Forgery (CSRF) vulnerability in Stesvis Frontpage Category Filter
Cross-Site Request Forgery (CSRF) vulnerability in stesvis Frontpage category filter allows Cross Site Request Forgery.
network
low complexity
stesvis CWE-352
8.8
2025-03-11 CVE-2025-28868 Cross-Site Request Forgery (CSRF) vulnerability in Condenast Ziplist Recipe
Cross-Site Request Forgery (CSRF) vulnerability in ZipList ZipList Recipe allows Cross Site Request Forgery.
network
low complexity
condenast CWE-352
8.8
2025-03-11 CVE-2025-28876 Cross-Site Request Forgery (CSRF) vulnerability in Skrill
Cross-Site Request Forgery (CSRF) vulnerability in Skrill_Team Skrill Official allows Cross Site Request Forgery.
network
low complexity
skrill CWE-352
8.8
2025-03-11 CVE-2024-13436 The Appsero Helper plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.3.2.
network
low complexity
CWE-352
6.1