Vulnerabilities > Cross-Site Request Forgery (CSRF)
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-06-21 | CVE-2019-1904 | Cross-Site Request Forgery (CSRF) vulnerability in Cisco IOS XE 16.1.3/16.2.1/16.3.1 A vulnerability in the web-based UI (web UI) of Cisco IOS XE Software could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack on an affected system. | 8.8 |
| 2019-06-20 | CVE-2019-1874 | Cross-Site Request Forgery (CSRF) vulnerability in Cisco Prime Service Catalog A vulnerability in the web-based management interface of Cisco Prime Service Catalog Software could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack on an affected system. | 8.8 |
| 2019-06-20 | CVE-2019-1632 | Cross-Site Request Forgery (CSRF) vulnerability in Cisco products A vulnerability in the web-based management interface of Cisco Integrated Management Controller (IMC) could allow an authenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack and perform arbitrary actions on an affected device. | 8.0 |
| 2019-06-19 | CVE-2018-17387 | Cross-Site Request Forgery (CSRF) vulnerability in Ranksol Nimble Professional 1.0 CSRF exists in Nimble Messaging Bulk SMS Marketing Application 1.0 for adding an admin account. | 8.8 |
| 2019-06-19 | CVE-2018-17389 | Cross-Site Request Forgery (CSRF) vulnerability in Ranksol Live Call Support 1.5 CSRF exists in server.php in Live Call Support Application 1.5 for adding an admin account. | 8.8 |
| 2019-06-18 | CVE-2017-8334 | Cross-Site Request Forgery (CSRF) vulnerability in Securifi products An issue was discovered on Securifi Almond, Almond+, and Almond 2015 devices with firmware AL-R096. | 8.0 |
| 2019-06-18 | CVE-2017-8328 | Cross-Site Request Forgery (CSRF) vulnerability in Securifi products An issue was discovered on Securifi Almond, Almond+, and Almond 2015 devices with firmware AL-R096. | 8.8 |
| 2019-06-18 | CVE-2018-18802 | Cross-Site Request Forgery (CSRF) vulnerability in Tubigan Welcome to OUR Resort 1.0 The Tubigan "Welcome to our Resort" 1.0 software allows CSRF via admin/mod_users/controller.php?action=edit. | 8.8 |
| 2019-06-18 | CVE-2019-4142 | Cross-Site Request Forgery (CSRF) vulnerability in IBM Cloud Private IBM Cloud Private 2.1.0, 3.1.0, 3.1.1, and 3.1.2 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. | 8.8 |
| 2019-06-17 | CVE-2017-9381 | Cross-Site Request Forgery (CSRF) vulnerability in Getvera Veraedge Firmware and Veralite Firmware An issue was discovered on Vera VeraEdge 1.7.19 and Veralite 1.7.481 devices. | 8.8 |