Vulnerabilities > Cross-Site Request Forgery (CSRF)
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-07-08 | CVE-2019-13401 | Cross-Site Request Forgery (CSRF) vulnerability in Fortinet Fcm-Mb40 Firmware 1.2.0.0 Dynacolor FCM-MB40 v1.2.0.0 devices have CSRF in all scripts under cgi-bin/. | 8.8 |
| 2019-07-07 | CVE-2019-13183 | Cross-Site Request Forgery (CSRF) vulnerability in Flarum 0.1.0 Flarum before 0.1.0-beta.9 allows CSRF against all POST endpoints, as demonstrated by changing admin settings. | 8.8 |
| 2019-07-06 | CVE-2019-13370 | Cross-Site Request Forgery (CSRF) vulnerability in Ignitedcms 1.0.0/1.0.1/20170219 index.php/admin/permissions in Ignited CMS through 2017-02-19 allows CSRF to add an administrator. | 8.8 |
| 2019-07-05 | CVE-2019-5984 | Cross-Site Request Forgery (CSRF) vulnerability in Waspthemes Custom CSS PRO Cross-site request forgery (CSRF) vulnerability in Custom CSS Pro 1.0.3 and earlier allows remote attackers to hijack the authentication of administrators via unspecified vectors. | 8.8 |
| 2019-07-05 | CVE-2019-5983 | Cross-Site Request Forgery (CSRF) vulnerability in Fla-Shop Html5 Maps Cross-site request forgery (CSRF) vulnerability in HTML5 Maps 1.6.5.6 and earlier allows remote attackers to hijack the authentication of administrators via unspecified vectors. | 8.8 |
| 2019-07-05 | CVE-2019-5980 | Cross-Site Request Forgery (CSRF) vulnerability in Meomundo Related Youtube Videos Cross-site request forgery (CSRF) vulnerability in Related YouTube Videos versions prior to 1.9.9 allows remote attackers to hijack the authentication of administrators via unspecified vectors. | 8.8 |
| 2019-07-05 | CVE-2019-5979 | Cross-Site Request Forgery (CSRF) vulnerability in Najeebmedia Personalized Woocommerce Cart Page Cross-site request forgery (CSRF) vulnerability in Personalized WooCommerce Cart Page 2.4 and earlier allows remote attackers to hijack the authentication of administrators via unspecified vectors. | 8.8 |
| 2019-07-05 | CVE-2019-5974 | Cross-Site Request Forgery (CSRF) vulnerability in Contest-Gallery Contest Gallery Cross-site request forgery (CSRF) vulnerability in Contest Gallery versions prior to 10.4.5 allows remote attackers to hijack the authentication of administrators via unspecified vectors. | 8.8 |
| 2019-07-05 | CVE-2019-5973 | Cross-Site Request Forgery (CSRF) vulnerability in Sukimalab Online Lesson Booking Cross-site request forgery (CSRF) vulnerability in Online Lesson Booking 0.8.6 and earlier allows remote attackers to hijack the authentication of administrators via unspecified vectors. | 8.8 |
| 2019-07-05 | CVE-2019-5971 | Cross-Site Request Forgery (CSRF) vulnerability in Sukimalab Attendance Manager Cross-site request forgery (CSRF) vulnerability in Attendance Manager 0.5.6 and earlier allows remote attackers to hijack the authentication of administrators via unspecified vectors. | 8.8 |