Vulnerabilities > Cross-Site Request Forgery (CSRF)
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-11-08 | CVE-2022-43481 | Cross-Site Request Forgery (CSRF) vulnerability in Rymera Advanced Coupons Cross-Site Request Forgery (CSRF) vulnerability in Advanced Coupons for WooCommerce Coupons plugin <= 4.5 on WordPress leading to notice dismissal. | 4.3 |
| 2022-11-08 | CVE-2022-43491 | Cross-Site Request Forgery (CSRF) vulnerability in Algolplus Advanced Dynamic Pricing for Woocommerce Cross-Site Request Forgery (CSRF) vulnerability in Advanced Dynamic Pricing for WooCommerce plugin <= 4.1.5 on WordPress leading to plugin settings import. | 4.3 |
| 2022-11-08 | CVE-2022-44741 | Cross-Site Request Forgery (CSRF) vulnerability in Slidervilla Testimonial Slider Cross-Site Request Forgery (CSRF) vulnerability leading to Cross-Site Scripting (XSS) in David Anderson Testimonial Slider plugin <= 1.3.1 on WordPress. | 8.8 |
| 2022-11-07 | CVE-2022-2387 | Cross-Site Request Forgery (CSRF) vulnerability in Awesomemotive Easy Digital Downloads The Easy Digital Downloads WordPress plugin before 3.0 does not have CSRF check in place when deleting payment history, and does not ensure that the post to be deleted is actually a payment history. | 4.3 |
| 2022-11-04 | CVE-2022-38660 | Cross-Site Request Forgery (CSRF) vulnerability in Hcltech Domino 9.0/9.0.1 HCL XPages applications are susceptible to a Cross Site Request Forgery (CSRF) vulnerability. | 8.8 |
| 2022-11-04 | CVE-2022-20961 | Cross-Site Request Forgery (CSRF) vulnerability in Cisco Identity Services Engine A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE) could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack and perform arbitrary actions on an affected device. This vulnerability is due to insufficient CSRF protections for the web-based management interface of an affected device. | 8.8 |
| 2022-11-03 | CVE-2022-25952 | Cross-Site Request Forgery (CSRF) vulnerability in Keywordrush Content EGG Cross-Site Request Forgery (CSRF) vulnerability in Keywordrush Content Egg plugin <= 5.4.0 on WordPress. | 8.8 |
| 2022-11-03 | CVE-2022-30608 | Cross-Site Request Forgery (CSRF) vulnerability in IBM Infosphere Information Server 11.7 "IBM InfoSphere Information Server 11.7 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a "user that the website trusts. | 8.8 |
| 2022-11-03 | CVE-2022-40131 | Cross-Site Request Forgery (CSRF) vulnerability in A3Rev Page View Count Cross-Site Request Forgery (CSRF) vulnerability in a3rev Software Page View Count plugin <= 2.5.5 on WordPress allows an attacker to reset the plugin settings. | 4.3 |
| 2022-11-03 | CVE-2022-44627 | Cross-Site Request Forgery (CSRF) vulnerability in Coleds Simple SEO Cross-Site Request Forgery (CSRF) vulnerability in David Cole Simple SEO plugin <= 1.8.12 on WordPress allows attackers to create or delete sitemaps. | 5.4 |