Vulnerabilities > Cross-Site Request Forgery (CSRF)

DATE	CVE	VULNERABILITY TITLE	RISK
2020-02-04	CVE-2013-7053	Cross-Site Request Forgery (CSRF) vulnerability in Dlink Dir-100 Firmware 4.03B07 D-Link DIR-100 4.03B07: cli.cgi CSRF network low complexity dlink CWE-352	8.8
2020-01-31	CVE-2020-8505	Cross-Site Request Forgery (CSRF) vulnerability in Arox School Management Software PHP/Mysql 20190314 School Management Software PHP/mySQL through 2019-03-14 allows office_admin/?action=deleteadmin CSRF to delete a user. network low complexity arox CWE-352	6.5
2020-01-31	CVE-2020-8504	Cross-Site Request Forgery (CSRF) vulnerability in Arox School Management Software PHP/Mysql 20190314 School Management Software PHP/mySQL through 2019-03-14 allows office_admin/?action=addadmin CSRF to add an administrative user. network low complexity arox CWE-352	6.5
2020-01-29	CVE-2019-7654	Cross-Site Request Forgery (CSRF) vulnerability in Wowza Streaming Engine Wowza Streaming Engine 4.8.0 and earlier suffers from multiple CSRF vulnerabilities. network low complexity wowza CWE-352	6.5
2020-01-29	CVE-2020-7965	Cross-Site Request Forgery (CSRF) vulnerability in Webargs Project Webargs flaskparser.py in Webargs 5.x through 5.5.2 doesn't check that the Content-Type header is application/json when receiving JSON input. network low complexity webargs-project CWE-352	8.8
2020-01-28	CVE-2020-8425	Cross-Site Request Forgery (CSRF) vulnerability in Cups Easy (Purchase & Inventory) Project Cups Easy (Purchase & Inventory) 1.0 Cups Easy (Purchase & Inventory) 1.0 is vulnerable to CSRF that leads to admin account deletion via userdelete.php. network low complexity cups-easy-purchase-inventory-project CWE-352	6.5
2020-01-28	CVE-2020-8424	Cross-Site Request Forgery (CSRF) vulnerability in Cups Easy Project Cups Easy 1.0 Cups Easy (Purchase & Inventory) 1.0 is vulnerable to CSRF that leads to admin account takeover via passwordmychange.php. network low complexity cups-easy-project CWE-352	8.8
2020-01-28	CVE-2020-8420	Cross-Site Request Forgery (CSRF) vulnerability in Joomla Joomla! An issue was discovered in Joomla! before 3.9.15. network low complexity joomla CWE-352	8.8
2020-01-28	CVE-2020-8419	Cross-Site Request Forgery (CSRF) vulnerability in Joomla Joomla! An issue was discovered in Joomla! before 3.9.15. network low complexity joomla CWE-352	8.8
2020-01-28	CVE-2020-8417	Cross-Site Request Forgery (CSRF) vulnerability in Codesnippets Code Snippets The Code Snippets plugin before 2.14.0 for WordPress allows CSRF because of the lack of a Referer check on the import menu. network low complexity codesnippets CWE-352	8.8