Vulnerabilities > Cross-Site Request Forgery (CSRF)

DATE CVE VULNERABILITY TITLE RISK
2019-09-17 CVE-2016-10989 Cross-Site Request Forgery (CSRF) vulnerability in Leenk Leenk.Me
The leenkme plugin before 2.6.0 for WordPress has wp-admin/admin.php?page=leenkme_facebook CSRF.
network
low complexity
leenk CWE-352
8.8
8.8
2019-09-17 CVE-2016-10982 Cross-Site Request Forgery (CSRF) vulnerability in Kentothemes Kento-Post-View-Counter
The kento-post-view-counter plugin through 2.8 for WordPress has wp-admin/admin.php?page=kentopvc_settings CSRF.
network
low complexity
kentothemes CWE-352
8.8
8.8
2019-09-17 CVE-2016-10978 Cross-Site Request Forgery (CSRF) vulnerability in Fossura TAG Miner
The fossura-tag-miner plugin before 1.1.5 for WordPress has CSRF.
network
low complexity
fossura CWE-352
8.8
8.8
2019-09-17 CVE-2016-10974 Cross-Site Request Forgery (CSRF) vulnerability in Tonjoostudio Fluid-Responsive-Slideshow
The fluid-responsive-slideshow plugin before 2.2.7 for WordPress has frs_save CSRF with resultant stored XSS.
network
low complexity
tonjoostudio CWE-352
8.8
8.8
2019-09-16 CVE-2016-10962 Cross-Site Request Forgery (CSRF) vulnerability in Icegram Engage
The icegram plugin before 1.9.19 for WordPress has CSRF via the wp-admin/edit.php option_name parameter.
network
low complexity
icegram CWE-352
6.5
6.5
2019-09-14 CVE-2019-16311 Cross-Site Request Forgery (CSRF) vulnerability in Niushop 1.11
NIUSHOP V1.11 has CSRF via search_info to index.php.
network
low complexity
niushop CWE-352
8.8
8.8
2019-09-13 CVE-2019-13920 Cross-Site Request Forgery (CSRF) vulnerability in Siemens Sinema Remote Connect Server
A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V2.0 SP1).
network
low complexity
siemens CWE-352
4.3
4.3
2019-09-13 CVE-2019-12922 Cross-Site Request Forgery (CSRF) vulnerability in multiple products
A CSRF issue in phpMyAdmin 4.9.0.1 allows deletion of any server in the Setup page.
network
low complexity
phpmyadmin fedoraproject CWE-352
6.5
6.5
2019-09-13 CVE-2016-10946 Cross-Site Request Forgery (CSRF) vulnerability in Wp-D3 Project Wp-D3
The wp-d3 plugin before 2.4.1 for WordPress has CSRF.
network
low complexity
wp-d3-project CWE-352
8.8
8.8
2019-09-13 CVE-2016-10945 Cross-Site Request Forgery (CSRF) vulnerability in Pagelines 1.1.4
The PageLines theme 1.1.4 for WordPress has wp-admin/admin-post.php?page=pagelines CSRF.
network
low complexity
pagelines CWE-352
8.8
8.8