Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1325 CNY

100%
Buy Us a Coffee

CWE-352 (跨站请求伪造(CSRF)) — Vulnerability Class 4917

4917 vulnerabilities classified as CWE-352 (跨站请求伪造(CSRF)). AI Chinese analysis included.

CWE-352, Cross-Site Request Forgery, is a web application weakness where the system fails to verify that an incoming request was intentionally initiated by the authenticated user rather than an unauthorized actor. Attackers typically exploit this vulnerability by tricking a victim into submitting a malicious request, often via a hidden link or form on a third-party site, while the victim is logged into the target application. Because the browser automatically includes valid session cookies, the server processes the forged request as legitimate, potentially allowing unauthorized actions like fund transfers or profile changes. Developers mitigate this risk by implementing anti-CSRF tokens, synchronizer tokens, or validating the Origin and Referer headers to ensure requests originate from trusted sources, thereby preventing unauthorized state changes.

MITRE CWE Description
The web application does not, or cannot, sufficiently verify whether a request was intentionally provided by the user who sent the request, which could have originated from an unauthorized actor.
Common Consequences (1)
Confidentiality, Integrity, Availability, Non-Repudiation, Access ControlGain Privileges or Assume Identity, Bypass Protection Mechanism, Read Application Data, Modify Application Data, DoS: Crash, Exit, or Restart
The consequences will vary depending on the nature of the functionality that is vulnerable to CSRF. An attacker could trick a client into making an unintentional request to the web server via a URL, image load, XMLHttpRequest, etc., which would then be treated as an authentic request from the client…
Mitigations (5)
Architecture and DesignUse a vetted library or framework that does not allow this weakness to occur or provides constructs that make this weakness easier to avoid [REF-1482]. For example, use anti-CSRF packages such as the OWASP CSRFGuard. [REF-330] Another example is the ESAPI Session Management control, which includes a component for CSRF. [REF-45]
ImplementationEnsure that the application is free of cross-site scripting issues (CWE-79), because most CSRF defenses can be bypassed using attacker-controlled script.
Architecture and DesignGenerate a unique nonce for each form, place the nonce into the form, and verify the nonce upon receipt of the form. Be sure that the nonce is not predictable (CWE-330). [REF-332]
Architecture and DesignIdentify especially dangerous operations. When the user performs a dangerous operation, send a separate confirmation request to ensure that the user intended to perform that operation.
Architecture and DesignUse the "double-submitted cookie" method as described by Felten and Zeller: When a user visits a site, the site should generate a pseudorandom value and set it as a cookie on the user's machine. The site should require every form submission to include this value as a form value and also as a cookie value. When a POST request is sent to the site, the request should only be considered valid if the f…
Examples (1)
This example PHP code attempts to secure the form submission process by validating that the user submitting the form has a valid session. A CSRF attack would not be prevented by this countermeasure because the attacker forges a request through the user's web browser in which a valid session already exists.
<form action="/url/profile.php" method="post"> <input type="text" name="firstname"/> <input type="text" name="lastname"/> <br/> <input type="text" name="email"/> <input type="submit" name="submit" value="Update"/> </form>
Bad · HTML
// initiate the session in order to validate sessions session_start(); //if the session is registered to a valid user then allow update if (! session_is_registered("username")) { echo "invalid session detected!"; // Redirect user to login page [...] exit; } // The user session is valid, so process the request // and update the information update_profile(); function update_profile { // read in the data from $POST and send an update // to the database SendUpdateToDatabase($_SESSION['username'], $_POST['email']); [...] echo "Your profile has been successfully updated."; }
Bad · PHP
CVE IDTitleCVSSSeverityPublished
CVE-2024-32863 exacqVison - CSRF issues with Web Service — exacqVision 6.8 Medium2024-08-01
CVE-2024-7360 SourceCodester Tracking Monitoring Management System ajax.php cross-site request forgery — Tracking Monitoring Management System 4.3 Medium2024-08-01
CVE-2024-6040 Missing client_id in parisneo/lollms-webui — parisneo/lollms 8.8AIHighAI2024-08-01
CVE-2024-40883 ELECOM WRC-X6000XS-G、WRC-X1500GS-B、WRC-X1500GSA-B 安全漏洞 — WRC-X1500GS-B 8.8AIHighAI2024-08-01
CVE-2024-3083 Plug and Track Sensor Net Connect 安全漏洞 — Sensor Net Connect V2 8.3 High2024-07-31
CVE-2023-38001 IBM Aspera Orchestrator cross-site request forgery — Aspera Orchestrator 6.5 Medium2024-07-30
CVE-2024-7226 SourceCodester Medicine Tracker System Password Change cross-site request forgery — Medicine Tracker System 4.3 Medium2024-07-30
CVE-2024-7169 SourceCodester School Fees Payment System ajax.php cross-site request forgery — School Fees Payment System 4.3 Medium2024-07-28
CVE-2024-7161 SeaCMS Password Change cross-site request forgery — SeaCMS 4.3 Medium2024-07-28
CVE-2024-7106 Spina CMS media_folders cross-site request forgery — CMS 4.3 Medium2024-07-25
CVE-2024-7065 Spina CMS cross-site request forgery — CMS 4.3 Medium2024-07-24
CVE-2024-3246 LiteSpeed Cache <= 6.2.0.1 - Cross-Site Request Forgery to Stored Cross-Site Scripting — LiteSpeed Cache 6.1 Medium2024-07-24
CVE-2024-6751 Social Auto Poster <= 5.3.14 - Cross-Site Request Forgery via Multiple Functions — Social Auto Poster 6.3 Medium2024-07-24
CVE-2024-5804 Conditional Fields for Contact Form 7 <= 2.4.13 - Cross-Site Request Forgery to Plugin Setting Reset — Conditional Fields for Contact Form 7 4.3 Medium2024-07-20
CVE-2024-39681 WordPress Cooked Plugin - Cross-Site Request Forgery to Apply Template to All Recipes — Cooked 5.4 Medium2024-07-17
CVE-2024-39680 WordPress Cooked Plugin - Cross-Site Request Forgery to Default Recipe Template Save — Cooked 5.4 Medium2024-07-17
CVE-2024-39679 WordPress Cooked Plugin - Cross-Site Request Forgery to Recipe Template Reset — Cooked 4.3 Medium2024-07-17
CVE-2024-39678 WordPress Cooked Plugin - Cross-Site Request Forgery to Get Recipe IDs — Cooked 4.3 Medium2024-07-17
CVE-2024-5815 Cross Site Request Forgery was identified in GitHub Enterprise Server that allowed write in a user owned repository — GitHub Enterprise Server 5.7AIMediumAI2024-07-16
CVE-2024-37938 WordPress SociallyViral theme <= 1.0.10 - Cross Site Request Forgery (CSRF) vulnerability — SociallyViral 4.3 Medium2024-07-12
CVE-2024-37939 WordPress Patricia Lite theme <= 1.2.3 - Cross Site Request Forgery (CSRF) vulnerability — Patricia Lite 4.3 Medium2024-07-12
CVE-2024-37940 WordPress Seraphinite Accelerator (Full, premium) plugin <= 2.21.13 - CSRF Leading to Arbitrary File Deletion vulnerability — Seraphinite Accelerator (Full, premium) 7.4 High2024-07-12
CVE-2024-37941 WordPress Internal Link Juicer: SEO Auto Linker for WordPress plugin <= 2.24.3 - Cross Site Request Forgery (CSRF) vulnerability — Internal Link Juicer: SEO Auto Linker for WordPress 4.3 Medium2024-07-12
CVE-2024-35773 WordPress Comment Reply Email plugin <= 1.3 - CSRF to Stored XSS vulnerability — Comment Reply Email 7.1 High2024-07-12
CVE-2024-37213 WordPress AliExpress Dropshipping with AliNext Lite plugin <= 3.4.6 - CSRF to XSS vulnerability — AliNext 7.1 High2024-07-12
CVE-2024-1375 Event post <= 5.9.10 - Cross-Site Request Forgery — Event post 4.3 Medium2024-07-12
CVE-2024-6649 SourceCodester Employee and Visitor Gate Pass Logging System Users.php save_users cross-site request forgery — Employee and Visitor Gate Pass Logging System 4.3 Medium2024-07-10
CVE-2024-28828 1-Click compromize via CSRF — Checkmk 8.8 High2024-07-10
CVE-2024-3798 Insecure handling of GET argument in Phoniebox — Phoniebox 8.8AIHighAI2024-07-10
CVE-2024-27783 Fortinet FortiAIOps 跨站请求伪造漏洞 — FortiAIOps 7.2 High2024-07-09

Vulnerabilities classified as CWE-352 (跨站请求伪造(CSRF)) represent 4917 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.