Vulnerabilities > Cross-Site Request Forgery (CSRF)
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-05-13 | CVE-2020-12427 | Cross-Site Request Forgery (CSRF) vulnerability in Westerndigital WD Discovery 2.12.127 The Western Digital WD Discovery application before 3.8.229 for MyCloud Home on Windows and macOS is vulnerable to CSRF, with impacts such as stealing data, modifying disk contents, or exhausting disk space. | 8.8 |
| 2020-05-12 | CVE-2020-11060 | Cross-Site Request Forgery (CSRF) vulnerability in Glpi-Project Glpi In GLPI before 9.4.6, an attacker can execute system commands by abusing the backup functionality. | 8.8 |
| 2020-05-07 | CVE-2020-5745 | Cross-Site Request Forgery (CSRF) vulnerability in Tecnick Tcexam 14.2.2 Cross-site request forgery in TCExam 14.2.2 allows a remote attacker to perform sensitive application actions by tricking legitimate users into clicking a crafted link. | 7.4 |
| 2020-05-06 | CVE-2020-2186 | Cross-Site Request Forgery (CSRF) vulnerability in Jenkins Amazon EC2 A cross-site request forgery vulnerability in Jenkins Amazon EC2 Plugin 1.50.1 and earlier allows attackers to provision instances. | 4.3 |
| 2020-05-06 | CVE-2020-2184 | Cross-Site Request Forgery (CSRF) vulnerability in Jenkins Current Versions Systems A cross-site request forgery vulnerability in Jenkins CVS Plugin 2.15 and earlier allows attackers to create and manipulate tags, and to connect to an attacker-specified URL. | 4.3 |
| 2020-05-05 | CVE-2020-8829 | Cross-Site Request Forgery (CSRF) vulnerability in Intelbras CIP 92200 Firmware CSRF on Intelbras CIP 92200 devices allows an attacker to access the panel and perform scraping or other analysis. | 8.8 |
| 2020-05-05 | CVE-2020-7983 | Cross-Site Request Forgery (CSRF) vulnerability in Commscope Ruckus Zoneflex R500 Firmware 3.4.2.0.384 A CSRF issue in login.asp on Ruckus R500 3.4.2.0.384 devices allows remote attackers to access the panel or conduct SSRF attacks. | 8.1 |
| 2020-05-05 | CVE-2020-5517 | Cross-Site Request Forgery (CSRF) vulnerability in Blueonyx 5209R Firmware CSRF in the /login URI in BlueOnyx 5209R allows an attacker to access the dashboard and perform scraping or other analysis. | 6.5 |
| 2020-05-05 | CVE-2019-19517 | Cross-Site Request Forgery (CSRF) vulnerability in Intelbras Action RF 1200 Firmware 1.1.3 Intelbras RF1200 1.1.3 devices allow CSRF to bypass the login.html form, as demonstrated by launching a scrapy process. | 8.8 |
| 2020-05-04 | CVE-2020-5335 | Cross-Site Request Forgery (CSRF) vulnerability in RSA Archer RSA Archer, versions prior to 6.7 P2 (6.7.0.2), contain a cross-site request forgery vulnerability. | 8.8 |