Vulnerabilities > Cross-Site Request Forgery (CSRF)
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-08-19 | CVE-2022-36224 | Cross-Site Request Forgery (CSRF) vulnerability in Xunruicms 4.5.6 XunRuiCMS V4.5.6 is vulnerable to Cross Site Request Forgery (CSRF). | 8.8 |
| 2022-08-19 | CVE-2022-36225 | Cross-Site Request Forgery (CSRF) vulnerability in Eyoucms 1.5.8 EyouCMS V1.5.8-UTF8-SP1 is vulnerable to Cross Site Request Forgery (CSRF) via the background, column management function and add. | 8.8 |
| 2022-08-19 | CVE-2022-36577 | Cross-Site Request Forgery (CSRF) vulnerability in Jizhicms 2.3.1 An issue was discovered in jizhicms v2.3.1. | 8.8 |
| 2022-08-19 | CVE-2022-36579 | Cross-Site Request Forgery (CSRF) vulnerability in Wellcms 2.2.0 Wellcms 2.2.0 is vulnerable to Cross Site Request Forgery (CSRF). | 8.8 |
| 2022-08-17 | CVE-2022-23765 | Cross-Site Request Forgery (CSRF) vulnerability in Iptime products This vulnerability occured by sending a malicious POST request to a specific page while logged in random user from some family of IPTIME NAS. | 8.8 |
| 2022-08-16 | CVE-2022-36312 | Cross-Site Request Forgery (CSRF) vulnerability in Airspan Airvelocity 1500 Firmware 15.18.00.2511 Airspan AirVelocity 1500 software version 15.18.00.2511 lacks CSRF protections in the eNodeB's web management UI. | 8.8 |
| 2022-08-15 | CVE-2022-38359 | Cross-Site Request Forgery (CSRF) vulnerability in Eyeofnetwork Eyes of Network web 5.3 Cross-site request forgery attacks can be carried out against the Eyes of Network web application, due to an absence of adequate protections. | 8.8 |
| 2022-08-12 | CVE-2022-37043 | Cross-Site Request Forgery (CSRF) vulnerability in Zimbra Collaboration 8.8.15/9.0.0 An issue was discovered in the webmail component in Zimbra Collaboration Suite (ZCS) 8.8.15 and 9.0. | 5.7 |
| 2022-08-05 | CVE-2016-3098 | Cross-Site Request Forgery (CSRF) vulnerability in Thoughtbot Administrate Cross-site request forgery (CSRF) vulnerability in administrate 0.1.4 and earlier allows remote attackers to hijack the user's OAuth autorization code. | 5.4 |
| 2022-08-04 | CVE-2022-28731 | Cross-Site Request Forgery (CSRF) vulnerability in Apache Jspwiki A carefully crafted request on UserPreferences.jsp could trigger an CSRF vulnerability on Apache JSPWiki before 2.11.3, which could allow the attacker to modify the email associated with the attacked account, and then a reset password request from the login page. | 6.5 |