Vulnerabilities > Cross-Site Request Forgery (CSRF)

DATE CVE VULNERABILITY TITLE RISK
2023-06-03 CVE-2023-3055 Cross-Site Request Forgery (CSRF) vulnerability in Azexo Page Builder With Image MAP BY Azexo 1.27.133
The Page Builder by AZEXO plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.27.133.
network
low complexity
azexo CWE-352
4.3
4.3
2023-06-01 CVE-2015-10109 Cross-Site Request Forgery (CSRF) vulnerability in Cincopa Video and Media Plug-In
A vulnerability was found in Video Playlist and Gallery Plugin up to 1.136 on WordPress.
network
low complexity
cincopa CWE-352
8.8
8.8
2023-05-31 CVE-2023-2549 Cross-Site Request Forgery (CSRF) vulnerability in Featherplugins Feather Login Page 1.0.7/1.1.1
The Feather Login Page plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions starting from 1.0.7 up to, and including, 1.1.1.
network
low complexity
featherplugins CWE-352
8.8
8.8
2023-05-30 CVE-2022-36250 Cross-Site Request Forgery (CSRF) vulnerability in Shopbeat Shop Beat Media Player 2.5.95
Shop Beat Solutions (Pty) LTD Shop Beat Media Player 2.5.95 up to 3.2.57 is vulnerable to Cross Site Request Forgery (CSRF).
network
low complexity
shopbeat CWE-352
8.8
8.8
2023-05-28 CVE-2023-33212 Cross-Site Request Forgery (CSRF) vulnerability in Crocoblock Jetformbuilder
Cross-Site Request Forgery (CSRF) vulnerability in Crocoblock JetFormBuilder — Dynamic Blocks Form Builder plugin <= 3.0.6 versions.
network
low complexity
crocoblock CWE-352
8.8
8.8
2023-05-25 CVE-2022-47144 Cross-Site Request Forgery (CSRF) vulnerability in Frenify Mediamatic 2.7
Cross-Site Request Forgery (CSRF) vulnerability in Plugincraft Mediamatic – Media Library Folders plugin <= 2.8.1 versions.
network
low complexity
frenify CWE-352
8.8
8.8
2023-05-25 CVE-2022-47177 Cross-Site Request Forgery (CSRF) vulnerability in Wpeasypay WP Easypay
Cross-Site Request Forgery (CSRF) vulnerability in WP Easy Pay WP EasyPay – Square for WordPress plugin <= 4.1 versions.
network
low complexity
wpeasypay CWE-352
8.8
8.8
2023-05-25 CVE-2022-47164 Cross-Site Request Forgery (CSRF) vulnerability in Mage-People Event Manager and Tickets Selling Plugin for Woocommerce
Cross-Site Request Forgery (CSRF) vulnerability in MagePeople Team Event Manager and Tickets Selling Plugin for WooCommerce plugin <= 3.7.7 versions.
network
low complexity
mage-people CWE-352
8.8
8.8
2023-05-24 CVE-2022-47448 Cross-Site Request Forgery (CSRF) vulnerability in Xiligroup Xili-Tidy-Tags
Cross-Site Request Forgery (CSRF) vulnerability in dev.Xiligroup.Com - MS plugin <= 1.12.03 versions.
network
low complexity
xiligroup CWE-352
8.8
8.8
2023-05-23 CVE-2023-26011 Cross-Site Request Forgery (CSRF) vulnerability in Dogblocker Read More Excerpt Link
Cross-Site Request Forgery (CSRF) vulnerability in Tim Eckel Read More Excerpt Link plugin <= 1.6 versions.
network
low complexity
dogblocker CWE-352
8.8
8.8