Vulnerabilities > Cross-Site Request Forgery (CSRF)

DATE CVE VULNERABILITY TITLE RISK
2024-08-12 CVE-2024-7662 Cross-Site Request Forgery (CSRF) vulnerability in Oretnom23 CAR Driving School Management System 1.0
A vulnerability was found in SourceCodester Car Driving School Management System 1.0.
network
low complexity
oretnom23 CWE-352
6.5
6.5
2024-08-06 CVE-2024-6720 Cross-Site Request Forgery (CSRF) vulnerability in Dmytropopov Light Poll
The Light Poll WordPress plugin through 1.0.0 does not have CSRF checks in some places, which could allow attackers to make logged in users perform unwanted actions via CSRF attacks
network
low complexity
dmytropopov CWE-352
8.8
8.8
2024-08-04 CVE-2024-7459 Cross-Site Request Forgery (CSRF) vulnerability in Siamonhasan Warehouse Inventory System 1.0/2.0
A vulnerability was found in OSWAPP Warehouse Inventory System 1.0/2.0.
network
low complexity
siamonhasan CWE-352
8.8
8.8
2024-08-04 CVE-2024-7460 Cross-Site Request Forgery (CSRF) vulnerability in Siamonhasan Warehouse Inventory System 1.0/2.0
A vulnerability was found in OSWAPP Warehouse Inventory System 1.0/2.0.
network
low complexity
siamonhasan CWE-352
8.8
8.8
2024-08-01 CVE-2024-7367 Cross-Site Request Forgery (CSRF) vulnerability in Oretnom23 Simple Realtime Quiz System 1.0
A vulnerability, which was classified as problematic, was found in SourceCodester Simple Realtime Quiz System 1.0.
network
low complexity
oretnom23 CWE-352
8.8
8.8
2024-08-01 CVE-2024-32863 Cross-Site Request Forgery (CSRF) vulnerability in Johnsoncontrols Exacqvision web Service 20.06.11.0/20.06.3.0/21.03
Under certain circumstances the exacqVision Web Services may be susceptible to Cross-Site Request Forgery (CSRF)
network
low complexity
johnsoncontrols CWE-352
8.8
8.8
2024-08-01 CVE-2024-7360 Cross-Site Request Forgery (CSRF) vulnerability in Oretnom23 Tracking Monitoring Management System 1.0
A vulnerability classified as problematic has been found in SourceCodester Tracking Monitoring Management System 1.0.
network
low complexity
oretnom23 CWE-352
8.8
8.8
2024-08-01 CVE-2024-40883 Cross-Site Request Forgery (CSRF) vulnerability in Elecom products
Cross-site request forgery vulnerability exists in ELECOM wireless LAN routers.
network
low complexity
elecom CWE-352
8.8
8.8
2024-07-31 CVE-2024-3083 Cross-Site Request Forgery (CSRF) vulnerability in Proges Sensor NET Connect Firmware V2 2.24
A “CWE-352: Cross-Site Request Forgery (CSRF)” can be exploited by remote attackers to perform state-changing operations with administrative privileges by luring authenticated victims into visiting a malicious web page.
network
low complexity
proges CWE-352
8.3
8.3
2024-07-30 CVE-2023-38001 Cross-Site Request Forgery (CSRF) vulnerability in IBM Aspera Orchestrator 4.0.1
IBM Aspera Orchestrator 4.0.1 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts.
network
low complexity
ibm CWE-352
6.5
6.5