VYPR

CWE-352

Cross-Site Request Forgery (CSRF)

CompoundStableLikelihood: Medium

Description

The web application does not, or cannot, sufficiently verify whether a request was intentionally provided by the user who sent the request, which could have originated from an unauthorized actor.

Hierarchy (View 1000)

Parents

Children

none

Related attack patterns (CAPEC)

CAPEC-111 · CAPEC-462 · CAPEC-467 · CAPEC-62

CVEs mapped to this weakness (5,713)

page 214 of 286
  • CVE-2023-23847LowFeb 15, 2023
    risk 0.23cvss 3.5epss 0.00

    A cross-site request forgery (CSRF) vulnerability in Synopsys Jenkins Coverity Plugin 3.0.2 and earlier allows attackers to connect to an attacker-specified HTTP server using attacker-specified credentials IDs obtained through another method, capturing credentials stored in…

  • CVE-2022-45393LowNov 15, 2022
    risk 0.23cvss 3.5epss 0.00

    A cross-site request forgery (CSRF) vulnerability in Jenkins Delete log Plugin 1.0 and earlier allows attackers to delete build logs.

  • CVE-2022-23111MedJan 12, 2022
    risk 0.23cvss 4.3epss 0.27

    A cross-site request forgery (CSRF) vulnerability in Jenkins Publish Over SSH Plugin 1.22 and earlier allows attackers to connect to an attacker-specified SSH server using attacker-specified credentials.

  • CVE-2020-28838LowDec 11, 2020
    risk 0.23cvss 3.5epss 0.00

    Cross Site Request Forgery (CSRF) in CART option in OpenCart Ltd. Opencart CMS 3.0.3.6 allows attacker to add cart items via Add to cart.

  • CVE-2018-7677LowMar 14, 2018
    risk 0.23cvss 3.5epss 0.01

    A CSRF exposure exists in NetIQ Access Manager (NAM) 4.4 Identity Server component.

  • CVE-2017-5244LowJun 15, 2017
    risk 0.23cvss 3.5epss 0.01

    Routes used to stop running Metasploit tasks (either particular ones or all tasks) allowed GET requests. Only POST requests should have been allowed, as the stop/stop_all routes change the state of the service. This could have allowed an attacker to stop currently-running…

  • CVE-2016-3009LowNov 30, 2016
    risk 0.23cvss 3.5epss 0.01

    Cross-site request forgery (CSRF) vulnerability in IBM Connections 4.0 through CR4, 4.5 through CR5, and 5.0 before CR4 allows remote authenticated users to hijack the authentication of arbitrary users for requests that modify the Connections generic page.

  • CVE-2016-2998LowSep 1, 2016
    risk 0.23cvss 3.5epss 0.00

    Cross-site request forgery (CSRF) vulnerability in IBM Connections 4.0 through CR4, 4.5 through CR5, 5.0 before CR4, and 5.5 before CR1 allows remote authenticated users to hijack the authentication of arbitrary users for requests that update data.

  • CVE-2026-34384MedMar 31, 2026
    risk 0.22cvss 4.5epss 0.00

    Admidio is an open-source user management solution. Prior to version 5.0.8, the create_user, assign_member, and assign_user action modes in modules/registration.php approve pending user registrations via GET request without validating a CSRF token. Unlike the delete_user mode in…

  • CVE-2024-39326MedJul 2, 2024
    risk 0.22cvss 4.4epss 0.00

    SkillTree is a micro-learning gamification platform. Prior to version 2.12.6, the endpoint `/admin/projects/{projectname}/skills/{skillname}/video` (and probably others) is open to a cross-site request forgery (CSRF) vulnerability. Due to the endpoint being CSRFable e.g POST…

  • CVE-2023-47635MedFeb 20, 2024
    risk 0.22cvss 4.5epss 0.00

    Decidim is a participatory democracy framework. Starting in version 0.23.0 and prior to versions 0.27.5 and 0.28.0, the CSRF authenticity token check is disabled for the questionnaire templates preview. The issue does not imply a serious security thread as you need to have…

  • CVE-2026-48518MedJun 15, 2026
    risk 0.21cvss 4.3epss 0.00

    MultiJuicer is used to run separate Juice Shop instances on a central kubernetes cluster without the need for local instances. In versions 8.0.0 through 10.0.0, the team join endpoint (POST /multi-juicer/api/teams/{team}/join) accepted requests with any Content-Type, including…

  • CVE-2026-9719MedJun 6, 2026
    risk 0.21cvss 4.3epss 0.00

    The LatePoint – Calendar Booking Plugin for Appointments and Events plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 5.6.0. This is due to missing or incorrect nonce validation on the change_status function. This makes it…

  • CVE-2026-7047MedJun 6, 2026
    risk 0.21cvss 4.3epss 0.00

    The Frontend User Notes plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.1.1. This is due to missing or incorrect nonce validation on the funp_ajax_modify_notes function. This makes it possible for unauthenticated attackers…

  • CVE-2026-8340MedMay 22, 2026
    risk 0.21cvss 4.3epss 0.00

    Concrete CMS 9.5.0 and below is vulnerable to CSRF via Backend\File::approveVersion. Victim with edit_file_contents permission is CSRF'd into publishing an attacker-chosen previously-uploaded version (downgrade to an older version of a file, or activation of a co-editor's…

  • CVE-2026-7615MedMay 22, 2026
    risk 0.21cvss 4.3epss 0.00

    The Widget Context plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.3.3. This is due to missing or incorrect nonce validation on the save_widget_context_settings function. This makes it possible for unauthenticated…

  • CVE-2026-7882MedMay 21, 2026
    risk 0.21cvss 4.3epss 0.00

    Concrete CMS 9.5.0 and below is vulnerable to unauthorized file deletion due to an Inverted CSRF token check in the DeleteFile controller. The code throws an error when the token IS valid and proceeds with file deletion when the token is invalid or missing. This effectively…

  • CVE-2026-5365MedMay 14, 2026
    risk 0.21cvss 4.3epss 0.00

    The LatePoint plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to and including 5.3.2. This is due to missing nonce verification on the request_cancellation() function. This makes it possible for unauthenticated attackers to cancel a logged-in…

  • CVE-2026-8194MedMay 9, 2026
    risk 0.21cvss 4.3epss 0.00

    A security vulnerability has been detected in osTicket up to 1.18.3. Impacted is an unknown function of the file include/class.dispatcher.php of the component Dispatcher. The manipulation of the argument _method leads to cross-site request forgery. Remote exploitation of the…

  • CVE-2026-3140MedMay 1, 2026
    risk 0.21cvss 4.3epss 0.00

    The Ultimate Dashboard plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 3.8.14. This is due to a flawed nonce validation conditional in the 'handle_module_actions' function. This makes it possible for unauthenticated…