Vulnerabilities > Cross-Site Request Forgery (CSRF)
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-08-22 | CVE-2019-15329 | Cross-Site Request Forgery (CSRF) vulnerability in Codection Import Users From CSV With Meta The import-users-from-csv-with-meta plugin before 1.14.0.3 for WordPress has CSRF. | 8.8 |
| 2019-08-22 | CVE-2014-10382 | Cross-Site Request Forgery (CSRF) vulnerability in Pippinsplugins Featured Comments The feature-comments plugin before 1.2.5 for WordPress has CSRF for featuring or burying a comment. | 4.3 |
| 2019-08-22 | CVE-2016-10918 | Cross-Site Request Forgery (CSRF) vulnerability in Supsystic Photo Gallery The gallery-by-supsystic plugin before 1.8.6 for WordPress has CSRF. | 8.8 |
| 2019-08-21 | CVE-2019-13477 | Cross-Site Request Forgery (CSRF) vulnerability in Control-Webpanel Webpanel 0.9.8.837 In CentOS-WebPanel.com (aka CWP) CentOS Web Panel 0.9.8.837, CSRF in the forgot password function allows an attacker to change the password for the root account. | 8.8 |
| 2019-08-21 | CVE-2019-12624 | Cross-Site Request Forgery (CSRF) vulnerability in Cisco IOS XE A vulnerability in the web-based management interface of Cisco IOS XE New Generation Wireless Controller (NGWC) could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack and perform arbitrary actions on an affected device. | 8.8 |
| 2019-08-21 | CVE-2017-18521 | Cross-Site Request Forgery (CSRF) vulnerability in Wp-Kama Democracy Poll The democracy-poll plugin before 5.4 for WordPress has CSRF via wp-admin/options-general.php?page=democracy-poll&subpage=l10n. | 8.8 |
| 2019-08-21 | CVE-2016-10903 | Cross-Site Request Forgery (CSRF) vulnerability in Godaddy Email Marketing The GoDaddy godaddy-email-marketing-sign-up-forms plugin before 1.1.3 for WordPress has CSRF. | 8.8 |
| 2019-08-21 | CVE-2016-10902 | Cross-Site Request Forgery (CSRF) vulnerability in Gowebsolutions WP Customer Reviews The wp-customer-reviews plugin before 3.0.9 for WordPress has CSRF in the admin tools. | 8.8 |
| 2019-08-20 | CVE-2019-4167 | Cross-Site Request Forgery (CSRF) vulnerability in IBM Storediq IBM StoredIQ 7.6.0 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. | 6.5 |
| 2019-08-20 | CVE-2019-4117 | Cross-Site Request Forgery (CSRF) vulnerability in IBM Cloud Private IBM Cloud Private 3.1.1 and 3.1.2 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. | 8.8 |