Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium

CSRF

This page lists 750 vulnerabilities in this category.

High: 742 Medium: 6 Low: 2
Vulnerability Name
CVE
CWE
Severity
WordPress Plugin Defender Security-Malware Scanner, Login Security & Firewall Cross-Site Request Forgery (2.4.6)
-
CWE-352
High
WordPress Plugin Contact Form 7 Style Cross-Site Request Forgery (3.1.9)
CVE-2021-24159
CWE-352
High
WordPress Plugin Dokan-Best WooCommerce Multivendor Marketplace Solution-Build Your Own Amazon, eBay, Etsy Cross-Site Request Forgery (3.2.0)
-
CWE-352
High
WordPress Plugin EWWW Image Optimizer Cross-Site Request Forgery (5.8.1)
-
CWE-352
High
WordPress Plugin Facebook for WordPress Cross-Site Request Forgery (3.0.3)
CVE-2021-24218
CWE-352
High
WordPress Plugin Forminator-Contact Form, Payment Form & Custom Form Builder Cross-Site Request Forgery (1.14.8)
-
CWE-352
High
WordPress Plugin Ocean Extra Cross-Site Request Forgery (1.6.5)
-
CWE-352
High
WordPress Plugin Process Steps Template Designer Cross-Site Request Forgery (1.2.1)
-
CWE-352
High
WordPress Plugin Style Kits-Advanced Theme Styles for Elementor Cross-Site Request Forgery (1.8.0)
-
CWE-352
High
WordPress Plugin VM Backups Cross-Site Request Forgery (1.0)
CVE-2021-24173
CWE-352
High
WordPress Plugin WP ERP-Complete WordPress Business Manager with HR, CRM & Accounting Systems for Small Businesses Cross-Site Request Forgery (1.7.4)
-
CWE-352
High
WordPress Plugin Custom Banners Cross-Site Request Forgery (3.2.2)
-
CWE-352
High
WordPress Plugin Better Search Cross-Site Request Forgery (2.5.2)
-
CWE-352
High
WordPress Plugin Multivendor Marketplace Solution for WooCommerce-WC Marketplace Cross-Site Request Forgery (3.5.7)
-
CWE-352
High
WordPress Plugin WP Hotel Booking Cross-Site Request Forgery (1.10.1)
-
CWE-352
High
WordPress Plugin NotificationX-WooCommerce Sales Notification Popup, Custom & Live Sales Notification, FOMO, Social Proof, Announcement Banner & Sticky Notification Bar Cross-Site Request Forgery (1.8.2)
-
CWE-352
High
WordPress Plugin Paid Memberships Pro-Restrict Member Access to Content, Courses, Communities-Free or Paid Subscriptions Cross-Site Request Forgery (2.4.2)
CVE-2020-36754
CWE-352
High
WordPress Plugin Product Catalog X Cross-Site Request Forgery (1.5.12)
-
CWE-352
High
WordPress Plugin Radio Buttons for Taxonomies Cross-Site Request Forgery (2.0.5)
-
CWE-352
High
WordPress Plugin RSS Aggregator by Feedzy-Feed to Post, Autoblogging, News & YouTube Video Feeds Aggregator Cross-Site Request Forgery (3.4.2)
-
CWE-352
High
WordPress Plugin Sticky Menu, Sticky Header (or anything!) on Scroll Cross-Site Request Forgery (2.2)
-
CWE-352
High
WordPress Plugin Top 10-Popular posts for WordPress Cross-Site Request Forgery (2.9.4)
-
CWE-352
High
WordPress Plugin Woody ad snippets-Insert Header Footer Code, AdSense Ads Cross-Site Request Forgery (2.3.9)
-
CWE-352
High
WordPress Plugin WP ERP-Complete WordPress Business Manager with HR, CRM & Accounting Systems for Small Businesses Cross-Site Request Forgery (1.6.3)
-
CWE-352
High
WordPress Plugin WP Project Manager-Task, team, and project management featuring kanban board and gantt charts Cross-Site Request Forgery (2.4.0)
CVE-2020-36745
CWE-352
High
WordPress Plugin Site Offline Or Coming Soon Or Maintenance Mode Cross-Site Request Forgery (1.4.3)
CVE-2020-35773
CWE-352
High
WordPress Plugin Child Theme Creator by Orbisius Cross-Site Request Forgery (1.5.1)
CVE-2020-28649
CWE-352
High
WordPress Plugin Live Chat-Live support Cross-Site Request Forgery (3.1.0)
CVE-2020-5642
CWE-352
High
WordPress Plugin Ninja Forms Contact Form-The Drag and Drop Form Builder for WordPress Cross-Site Request Forgery (3.4.27)
CVE-2020-36174
CWE-352
High
WordPress Plugin WP Activity Log Cross-Site Request Forgery (4.1.3.2)
-
CWE-352
High
WordPress Plugin Contextual Related Posts Cross-Site Request Forgery (2.9.3)
-
CWE-352
High
WordPress Plugin Redux Framework Cross-Site Request Forgery (4.1.20)
-
CWE-352
High
WordPress Plugin Redux Framework Cross-Site Request Forgery (4.1.23)
-
CWE-352
High
WordPress Plugin Ultimate Category Excluder Cross-Site Request Forgery (1.1)
CVE-2020-35135
CWE-352
High
WordPress Plugin Contact Form DB-Elementor Cross-Site Request Forgery (1.5)
CVE-2021-3133
CWE-352
High
WordPress Plugin Travelpayouts:All Travel Brands in One Place Cross-Site Request Forgery (1.0.16)
-
CWE-352
High
WordPress Plugin Wordpress Uninstall Cross-Site Request Forgery (1.2.1)
CVE-2015-9332
CWE-352
High
WordPress Plugin Easy Property Listings Cross-Site Request Forgery (3.3.5.8)
CVE-2020-5530
CWE-352
High
WordPress Plugin Tickera-WordPress Event Ticketing Cross-Site Request Forgery (3.5.1.0)
CVE-2023-23726
CWE-352
High
WordPress Plugin Popup Maker-Popup for opt-ins, lead gen, & more Cross-Site Request Forgery (1.18.0)
-
CWE-352
High
WordPress Plugin Portfolio-WordPress Portfolio Cross-Site Request Forgery (2.8.8)
-
CWE-352
High
WordPress Plugin Protected Posts Logout Button Cross-Site Request Forgery (1.4.4)
-
CWE-352
High
WordPress Plugin Publish to Schedule Cross-Site Request Forgery (4.4.2)
CVE-2023-25994
CWE-352
High
WordPress Plugin ReviewX-Multi-criteria Rating & Reviews for WooCommerce Cross-Site Request Forgery (1.2.8)
-
CWE-352
High
WordPress Plugin Social Login WP Cross-Site Request Forgery (5.0.0.0)
CVE-2022-38063
CWE-352
High
WordPress Plugin TeraWallet-For WooCommerce Multiple Cross-Site Request Forgery Vulnerabilities (1.3.24)
CVE-2022-40198
CWE-352
High
WordPress Plugin Theme Tweaker Cross-Site Request Forgery (5.20)
CVE-2023-23713
CWE-352
High
WordPress Plugin Tickera-WordPress Event Ticketing Cross-Site Request Forgery (3.4.9.9)
CVE-2022-4549
CWE-352
High
WordPress Plugin PayGreen-Ancienne version Cross-Site Request Forgery (4.10.2)
CVE-2023-25986
CWE-352
High
WordPress Plugin Uncanny Toolkit for LearnDash Cross-Site Request Forgery (3.6.3)
-
CWE-352
High
WordPress Plugin Uncanny Toolkit for LearnDash Cross-Site Request Forgery (3.6.4.1)
CVE-2023-23714
CWE-352
High
WordPress Plugin UpdraftPlus WordPress Backup Cross-Site Request Forgery (1.22.24)
-
CWE-352
High
WordPress Plugin VikBooking Hotel Booking Engine & PMS Multiple Cross-Site Request Forgery Vulnerabilities (1.5.12)
CVE-2023-25707
CWE-352
High
WordPress Plugin WordPress Books Gallery Cross-Site Request Forgery (4.4.8)
CVE-2023-23705
CWE-352
High
WordPress Plugin WP Maps-Display Google Maps Perfectly with Ease Cross-Site Request Forgery (4.4.2)
CVE-2023-28172
CWE-352
High
WordPress Plugin WP Maps-Display Google Maps Perfectly with Ease Cross-Site Request Forgery (4.2.3)
CVE-2022-25600
CWE-352
High
WordPress Plugin WordPress Robots.txt optimization (+ XML Sitemap)-Website traffic, SEO & ranking Booster Cross-Site Request Forgery (1.4.5)
CVE-2023-25706
CWE-352
High
WordPress Plugin WP Coder-add custom html, css and js code Cross-Site Request Forgery (2.5.1)
CVE-2021-25053
CWE-352
High
WordPress Plugin Podlove Podcast Publisher Cross-Site Request Forgery (3.8.3)
CVE-2023-25472
CWE-352
High
WordPress Plugin OAuth Single Sign On-SSO (OAuth Client) Multiple Cross-Site Request Forgery Vulnerabilities (6.24.1)
CVE-2023-1093
CWE-352
High
WordPress Plugin WP Dynamic Keywords Injector Cross-Site Request Forgery (2.3.15)
CVE-2022-47141
CWE-352
High
WordPress Plugin Community by PeepSo-Social Network, Membership, Registration, User Profiles Multiple Cross-Site Request Forgery Vulnerabilities (6.0.2.0)
CVE-2023-25967
CWE-352
High
WordPress Plugin WordPress Gallery-NextGEN Gallery Cross-Site Request Forgery (3.28)
CVE-2022-38468
CWE-352
High
WordPress Plugin WP Customer Area Cross-Site Request Forgery (8.1.3)
CVE-2022-4745
CWE-352
High
WordPress Plugin 301 Redirects-Easy Redirect Manager Cross-Site Request Forgery (2.72)
-
CWE-352
High
WordPress Plugin Accept Stripe Donation-AidWP Cross-Site Request Forgery (3.1.5)
CVE-2022-47422
CWE-352
High
WordPress Plugin Advanced Dynamic Pricing for WooCommerce Cross-Site Request Forgery (4.1.3)
CVE-2022-38095
CWE-352
High
WordPress Plugin All in One SEO-Best WordPress SEO-Easily Improve SEO Rankings & Increase Traffic Cross-Site Request Forgery (4.2.3.1)
CVE-2022-38093
CWE-352
High
WordPress Plugin AutomatorWP-The most flexible and powerful no-code automation for WordPress Cross-Site Request Forgery (2.5.8)
-
CWE-352
High
WordPress Plugin AutomatorWP-The most flexible and powerful no-code automation for WordPress Cross-Site Request Forgery (2.5.0)
CVE-2023-23992
CWE-352
High
WordPress Plugin Cart All In One For WooCommerce Cross-Site Request Forgery (1.1.10)
CVE-2022-46806
CWE-352
High
WordPress Plugin Conditional Payments for WooCommerce Cross-Site Request Forgery (2.3.1)
CVE-2022-46805
CWE-352
High
WordPress Plugin My Tickets Cross-Site Request Forgery (1.9.10)
CVE-2022-47440
CWE-352
High
WordPress Plugin CSS JS Manager, Async JavaScript, Defer Render Blocking CSS supports WooCommerce Cross-Site Request Forgery (2.4.49)
CVE-2022-47154
CWE-352
High
WordPress Plugin Easy Google Analytics for WordPress Cross-Site Request Forgery (1.6.0)
CVE-2023-23887
CWE-352
High