Vulnerabilities > Cross-Site Request Forgery (CSRF)
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-01-02 | CVE-2013-3935 | Cross-Site Request Forgery (CSRF) vulnerability in Opsview and Opsview Core Cross-site request forgery (CSRF) vulnerability in Opsview before 4.4.1 and Opsview Core before 20130522 allows remote attackers to hijack the authentication of administrators for requests that change the administrator password via unspecified vectors. | 8.8 |
| 2019-12-31 | CVE-2015-5595 | Cross-Site Request Forgery (CSRF) vulnerability in Zenphoto Cross-site request forgery (CSRF) vulnerability in admin.php in Zenphoto before 1.4.9 allows remote attackers to hijack the authentication of admin users for requests that may cause a denial of service (resource consumption). | 6.5 |
| 2019-12-31 | CVE-2019-12273 | Cross-Site Request Forgery (CSRF) vulnerability in Outsystems OutSystems Platform 10 through 11 allows ImageResourceDetail.aspx CSRF for content modifications and file uploads. | 6.5 |
| 2019-12-30 | CVE-2013-0196 | Cross-Site Request Forgery (CSRF) vulnerability in Redhat Openshift 1.2 A CSRF issue was found in OpenShift Enterprise 1.2. | 6.5 |
| 2019-12-30 | CVE-2019-19737 | Cross-Site Request Forgery (CSRF) vulnerability in Mfscripts Yetishare MFScripts YetiShare 3.5.2 through 4.5.3 does not set the SameSite flag on session cookies, allowing the cookie to be sent in cross-site requests and potentially be used in cross-site request forgery attacks. | 8.8 |
| 2019-12-30 | CVE-2019-20071 | Cross-Site Request Forgery (CSRF) vulnerability in Netis-Systems Dl4343 Firmware On Netis DL4323 devices, CSRF exists via form2logaction.cgi to delete all logs. | 6.5 |
| 2019-12-27 | CVE-2014-3136 | Cross-Site Request Forgery (CSRF) vulnerability in Dlink Dwr-113 Firmware 2.02 Cross-site request forgery (CSRF) vulnerability in D-Link DWR-113 (Rev. | 8.8 |
| 2019-12-27 | CVE-2013-4665 | Cross-Site Request Forgery (CSRF) vulnerability in Spbas Business Automation Software 2012 SPBAS Business Automation Software 2012 has CSRF. | 6.5 |
| 2019-12-26 | CVE-2019-19995 | Cross-Site Request Forgery (CSRF) vulnerability in Intelbras IWR 3000N Firmware 1.8.7 A CSRF issue was discovered on Intelbras IWR 3000N 1.8.7 devices, leading to complete control of the router, as demonstrated by v1/system/user. | 8.8 |
| 2019-12-26 | CVE-2019-16326 | Cross-Site Request Forgery (CSRF) vulnerability in Dlink Dir-601 Firmware 2.00Na D-Link DIR-601 B1 2.00NA devices have CSRF because no anti-CSRF token is implemented. | 8.8 |