Vulnerabilities > Cross-Site Request Forgery (CSRF)

DATE	CVE	VULNERABILITY TITLE	RISK
2021-05-26	CVE-2019-14836	Cross-Site Request Forgery (CSRF) vulnerability in Redhat 3Scale 2.4 A vulnerability was found that the 3scale dev portal does not employ mechanisms for protection against login CSRF. network low complexity redhat CWE-352	8.8
2021-05-26	CVE-2021-26033	Cross-Site Request Forgery (CSRF) vulnerability in Joomla Joomla! An issue was discovered in Joomla! 3.0.0 through 3.9.26. network low complexity joomla CWE-352	6.5
2021-05-26	CVE-2021-26034	Cross-Site Request Forgery (CSRF) vulnerability in Joomla Joomla! An issue was discovered in Joomla! 3.0.0 through 3.9.26. network low complexity joomla CWE-352	6.5
2021-05-25	CVE-2021-20096	Cross-Site Request Forgery (CSRF) vulnerability in Lucyparsonslabs Openoversight 0.6.4 Cross-site request forgery in OpenOversight 0.6.4 allows a remote attacker to perform sensitive application actions by tricking legitimate users into clicking a crafted link. network low complexity lucyparsonslabs CWE-352	8.1
2021-05-24	CVE-2020-25408	Cross-Site Request Forgery (CSRF) vulnerability in College Management System Project College Management System 1.0 A Cross-Site Request Forgery (CSRF) vulnerability exists in ProjectWorlds College Management System Php 1.0 that allows a remote attacker to modify, delete, or make a new entry of the student, faculty, teacher, subject, scores, location, and article data. network low complexity college-management-system-project CWE-352	6.5
2021-05-24	CVE-2020-25411	Cross-Site Request Forgery (CSRF) vulnerability in Online Examination System Project Online Examination System 1.0 Projectworlds Online Examination System 1.0 is vulnerable to CSRF, which allows a remote attacker to delete the existing user. network low complexity online-examination-system-project CWE-352	6.5
2021-05-21	CVE-2021-21549	Cross-Site Request Forgery (CSRF) vulnerability in Dell Xtremio Management Server 6.3.0 Dell EMC XtremIO Versions prior to 6.3.3-8, contain a Cross-Site Request Forgery Vulnerability in XMS. network low complexity dell CWE-352	8.8
2021-05-20	CVE-2021-32632	Cross-Site Request Forgery (CSRF) vulnerability in Pajbot Pajbot is a Twitch chat bot. network low complexity pajbot CWE-352	4.3
2021-05-20	CVE-2021-25931	Cross-Site Request Forgery (CSRF) vulnerability in Opennms Horizon and Meridian In OpenNMS Horizon, versions opennms-1-0-stable through opennms-27.1.0-1; OpenNMS Meridian, versions meridian-foundation-2015.1.0-1 through meridian-foundation-2019.1.18-1; meridian-foundation-2020.1.0-1 through meridian-foundation-2020.1.6-1 are vulnerable to CSRF, due to no CSRF protection at `/opennms/admin/userGroupView/users/updateUser`. network low complexity opennms CWE-352	8.8
2021-05-20	CVE-2021-25930	Cross-Site Request Forgery (CSRF) vulnerability in Opennms Horizon and Meridian In OpenNMS Horizon, versions opennms-1-0-stable through opennms-27.1.0-1; OpenNMS Meridian, versions meridian-foundation-2015.1.0-1 through meridian-foundation-2019.1.18-1; meridian-foundation-2020.1.0-1 through meridian-foundation-2020.1.6-1 are vulnerable to CSRF, due to no CSRF protection, and since there is no validation of an existing user name while renaming a user. network low complexity opennms CWE-352	4.3