Vulnerabilities > Cross-Site Request Forgery (CSRF)

DATE CVE VULNERABILITY TITLE RISK
2023-05-31 CVE-2023-2549 Cross-Site Request Forgery (CSRF) vulnerability in Featherplugins Feather Login Page 1.0.7/1.1.1
The Feather Login Page plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions starting from 1.0.7 up to, and including, 1.1.1.
network
low complexity
featherplugins CWE-352
8.8
8.8
2023-05-30 CVE-2022-36250 Cross-Site Request Forgery (CSRF) vulnerability in Shopbeat Shop Beat Media Player 2.5.95
Shop Beat Solutions (Pty) LTD Shop Beat Media Player 2.5.95 up to 3.2.57 is vulnerable to Cross Site Request Forgery (CSRF).
network
low complexity
shopbeat CWE-352
8.8
8.8
2023-05-28 CVE-2023-33212 Cross-Site Request Forgery (CSRF) vulnerability in Crocoblock Jetformbuilder
Cross-Site Request Forgery (CSRF) vulnerability in Crocoblock JetFormBuilder — Dynamic Blocks Form Builder plugin <= 3.0.6 versions.
network
low complexity
crocoblock CWE-352
8.8
8.8
2023-05-25 CVE-2022-47144 Cross-Site Request Forgery (CSRF) vulnerability in Frenify Mediamatic 2.7
Cross-Site Request Forgery (CSRF) vulnerability in Plugincraft Mediamatic – Media Library Folders plugin <= 2.8.1 versions.
network
low complexity
frenify CWE-352
8.8
8.8
2023-05-25 CVE-2022-47177 Cross-Site Request Forgery (CSRF) vulnerability in Wpeasypay WP Easypay
Cross-Site Request Forgery (CSRF) vulnerability in WP Easy Pay WP EasyPay – Square for WordPress plugin <= 4.1 versions.
network
low complexity
wpeasypay CWE-352
8.8
8.8
2023-05-25 CVE-2022-47164 Cross-Site Request Forgery (CSRF) vulnerability in Mage-People Event Manager and Tickets Selling Plugin for Woocommerce
Cross-Site Request Forgery (CSRF) vulnerability in MagePeople Team Event Manager and Tickets Selling Plugin for WooCommerce plugin <= 3.7.7 versions.
network
low complexity
mage-people CWE-352
8.8
8.8
2023-05-24 CVE-2022-47448 Cross-Site Request Forgery (CSRF) vulnerability in Xiligroup Xili-Tidy-Tags
Cross-Site Request Forgery (CSRF) vulnerability in dev.Xiligroup.Com - MS plugin <= 1.12.03 versions.
network
low complexity
xiligroup CWE-352
8.8
8.8
2023-05-23 CVE-2023-26011 Cross-Site Request Forgery (CSRF) vulnerability in Dogblocker Read More Excerpt Link
Cross-Site Request Forgery (CSRF) vulnerability in Tim Eckel Read More Excerpt Link plugin <= 1.6 versions.
network
low complexity
dogblocker CWE-352
8.8
8.8
2023-05-23 CVE-2023-33359 Cross-Site Request Forgery (CSRF) vulnerability in Piwigo 13.6.0
Piwigo 13.6.0 is vulnerable to Cross Site Request Forgery (CSRF) in the "add tags" function.
network
low complexity
piwigo CWE-352
4.3
4.3
2023-05-23 CVE-2023-25481 Cross-Site Request Forgery (CSRF) vulnerability in Podlove Subscribe Button
Cross-Site Request Forgery (CSRF) vulnerability in Podlove Podlove Subscribe button plugin <= 1.3.7 versions.
network
low complexity
podlove CWE-352
8.8
8.8