Vulnerabilities > Cross-Site Request Forgery (CSRF)
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-08-17 | CVE-2020-28846 | Cross-Site Request Forgery (CSRF) vulnerability in Seacms 10.7 Cross Site Request Forgery (CSRF) vulnerability exists in SeaCMS 10.7 in admin_manager.php, which could let a malicious user add an admin account. | 6.5 |
| 2021-08-17 | CVE-2020-4992 | Cross-Site Request Forgery (CSRF) vulnerability in IBM Datapower Gateway IBM DataPower Gateway 2018.4.1.0 through 2018.4.1.16 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. | 6.5 |
| 2021-08-16 | CVE-2021-24380 | Cross-Site Request Forgery (CSRF) vulnerability in Shantz Wordpress Qotd Project Shantz Wordpress Qotd The Shantz WordPress QOTD WordPress plugin through 1.2.2 is lacking any CSRF check when updating its settings, allowing attackers to make logged in administrators change them to arbitrary values. | 4.3 |
| 2021-08-16 | CVE-2021-24410 | Cross-Site Request Forgery (CSRF) vulnerability in Telugu Bible Verse Daily Project Telugu Bible Verse Daily The ?????? ?????? ??????? WordPress plugin through 1.0 is lacking any CSRF check when saving its settings and verses, and do not sanitise or escape them when outputting them back in the page. | 6.1 |
| 2021-08-12 | CVE-2020-20989 | Cross-Site Request Forgery (CSRF) vulnerability in Domainmod 4.13.0 A cross-site request forgery (CSRF) in /admin/maintenance/ of Domainmod 4.13 allows attackers to arbitrarily delete logs. | 4.3 |
| 2021-08-12 | CVE-2020-22403 | Cross-Site Request Forgery (CSRF) vulnerability in Express-Cart Project Express-Cart Cross Site Request Forgery (CSRF) vulnerability in Express cart v1.1.16 allows attackers to add an administrator account, add discount code or other unspecified impacts. | 8.8 |
| 2021-08-12 | CVE-2020-18458 | Cross-Site Request Forgery (CSRF) vulnerability in Damicms 6.0.6 Cross Site Request Forgery (CSRF) vulnerability exists in DamiCMS v6.0.6 that can add an admin account via admin.php?s=/Admin/doadd. | 8.0 |
| 2021-08-12 | CVE-2020-18460 | Cross-Site Request Forgery (CSRF) vulnerability in 711Cms 1.0.7 Cross Site Request Forgery (CSRF) vulnerability exists in 711cms v1.0.7 that can add an admin account via admin.php?c=Admin&m=content. | 8.8 |
| 2021-08-12 | CVE-2020-18463 | Cross-Site Request Forgery (CSRF) vulnerability in Aikcms 2.0 Cross Site Request Forgery (CSRF) vulnerability exists in v2.0.0 in video_list.php, which can let a malicious user delete a video message. | 2.4 |
| 2021-08-12 | CVE-2020-18464 | Cross-Site Request Forgery (CSRF) vulnerability in Aikcms 2.0 Cross Site Request Forgery (CSRF) vulnerability in AikCms 2.0.0 in video_list.php, which can let a malicious user delete movie information. | 3.5 |