Vulnerabilities > Cross-Site Request Forgery (CSRF)

DATE CVE VULNERABILITY TITLE RISK
2020-05-04 CVE-2020-12626 Cross-Site Request Forgery (CSRF) vulnerability in multiple products
An issue was discovered in Roundcube Webmail before 1.4.4.
network
low complexity
roundcube debian CWE-352
6.5
6.5
2020-04-30 CVE-2019-0235 Cross-Site Request Forgery (CSRF) vulnerability in Apache Ofbiz 17.12.01
Apache OFBiz 17.12.01 is vulnerable to some CSRF attacks.
network
low complexity
apache CWE-352
8.8
8.8
2020-04-29 CVE-2020-12462 Cross-Site Request Forgery (CSRF) vulnerability in Ninjaforms Ninja Forms
The ninja-forms plugin before 3.4.24.2 for WordPress allows CSRF with resultant XSS.
network
low complexity
ninjaforms CWE-352
6.1
6.1
2020-04-28 CVE-2017-18861 Cross-Site Request Forgery (CSRF) vulnerability in Netgear Readynas Surveillance 1.1.45/1.4.315
Certain NETGEAR devices are affected by CSRF.
low complexity
netgear CWE-352
8.0
8.0
2020-04-28 CVE-2016-11055 Cross-Site Request Forgery (CSRF) vulnerability in Netgear products
Certain NETGEAR devices are affected by CSRF.
network
low complexity
netgear CWE-352
4.3
4.3
2020-04-27 CVE-2018-21096 Cross-Site Request Forgery (CSRF) vulnerability in Netgear products
Certain NETGEAR devices are affected by CSRF.
low complexity
netgear CWE-352
7.4
7.4
2020-04-24 CVE-2019-4750 Cross-Site Request Forgery (CSRF) vulnerability in IBM Cloud APP Management 2019.3.0/2019.4.0
IBM Cloud App Management 2019.3.0 and 2019.4.0 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts.
network
low complexity
ibm CWE-352
8.8
8.8
2020-04-24 CVE-2017-18703 Cross-Site Request Forgery (CSRF) vulnerability in Netgear products
Certain NETGEAR devices are affected by CSRF.
network
low complexity
netgear CWE-352
8.8
8.8
2020-04-24 CVE-2017-18708 Cross-Site Request Forgery (CSRF) vulnerability in Netgear R8300 Firmware and R8500 Firmware
Certain NETGEAR devices are affected by CSRF.
network
low complexity
netgear CWE-352
8.8
8.8
2020-04-23 CVE-2018-21160 Cross-Site Request Forgery (CSRF) vulnerability in Netgear Readynas OS
NETGEAR ReadyNAS devices before 6.9.3 are affected by CSRF.
network
low complexity
netgear CWE-352
8.8
8.8