Vulnerabilities > Cross-Site Request Forgery (CSRF)

DATE CVE VULNERABILITY TITLE RISK
2024-01-03 CVE-2023-6984 Cross-Site Request Forgery (CSRF) vulnerability in Ideabox Powerpack Addons for Elementor
The PowerPack Addons for Elementor (Free Widgets, Extensions and Templates) plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.7.13.
network
low complexity
ideabox CWE-352
4.3
4.3
2023-12-30 CVE-2018-25096 Cross-Site Request Forgery (CSRF) vulnerability in Petrk94 Ownhealthrecord
A vulnerability was found in MdAlAmin-aol Own Health Record 0.1-alpha/0.2-alpha/0.3-alpha/0.3.1-alpha.
network
low complexity
petrk94 CWE-352
8.8
8.8
2023-12-29 CVE-2023-50902 Cross-Site Request Forgery (CSRF) vulnerability in Wpexperts NEW User Approve
Cross-Site Request Forgery (CSRF) vulnerability in WPExpertsio New User Approve.This issue affects New User Approve: from n/a through 2.5.1.
network
low complexity
wpexperts CWE-352
8.8
8.8
2023-12-29 CVE-2023-51354 Cross-Site Request Forgery (CSRF) vulnerability in Webba-Booking Webba Booking
Cross-Site Request Forgery (CSRF) vulnerability in WebbaPlugins Appointment & Event Booking Calendar Plugin – Webba Booking.This issue affects Appointment & Event Booking Calendar Plugin – Webba Booking: from n/a through 4.5.33.
network
low complexity
webba-booking CWE-352
8.8
8.8
2023-12-29 CVE-2023-51358 Cross-Site Request Forgery (CSRF) vulnerability in Brightplugins Block IPS for Gravity Forms 0.1/1.0.0/1.0.1
Cross-Site Request Forgery (CSRF) vulnerability in Bright Plugins Block IPs for Gravity Forms.This issue affects Block IPs for Gravity Forms: from n/a through 1.0.1.
network
low complexity
brightplugins CWE-352
8.8
8.8
2023-12-29 CVE-2023-51378 Cross-Site Request Forgery (CSRF) vulnerability in Eaglevisionit Rise Blocks
Cross-Site Request Forgery (CSRF) vulnerability in Rise Themes Rise Blocks – A Complete Gutenberg Page Builder.This issue affects Rise Blocks – A Complete Gutenberg Page Builder: from n/a through 3.1.
network
low complexity
eaglevisionit CWE-352
8.8
8.8
2023-12-29 CVE-2023-51402 Cross-Site Request Forgery (CSRF) vulnerability in Brainstormforce Ultimate Addons for Wpbakery Page Builder
Cross-Site Request Forgery (CSRF) vulnerability in Brain Storm Force Ultimate Addons for WPBakery Page Builder.This issue affects Ultimate Addons for WPBakery Page Builder: from n/a through 3.19.17.
network
low complexity
brainstormforce CWE-352
8.8
8.8
2023-12-28 CVE-2023-50858 Cross-Site Request Forgery (CSRF) vulnerability in Billminozzi Anti Hacker 4.34
Cross-Site Request Forgery (CSRF) vulnerability in Bill Minozzi Disable Json API, Login Lockdown, XMLRPC, Pingback, Stop User Enumeration Anti Hacker Scan.This issue affects Disable Json API, Login Lockdown, XMLRPC, Pingback, Stop User Enumeration Anti Hacker Scan: from n/a through 4.34.
network
low complexity
billminozzi CWE-352
8.8
8.8
2023-12-28 CVE-2023-50873 Cross-Site Request Forgery (CSRF) vulnerability in Infolific ADD ANY Extension to Pages
Cross-Site Request Forgery (CSRF) vulnerability in Marios Alexandrou Add Any Extension to Pages.This issue affects Add Any Extension to Pages: from n/a through 1.4.
network
low complexity
infolific CWE-352
8.8
8.8
2023-12-26 CVE-2012-10017 Cross-Site Request Forgery (CSRF) vulnerability in Bestwebsoft Portfolio
A vulnerability was found in BestWebSoft Portfolio Plugin up to 2.04 on WordPress.
network
low complexity
bestwebsoft CWE-352
8.8
8.8