Vulnerabilities > Cross-Site Request Forgery (CSRF)
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-06-17 | CVE-2019-6325 | Cross-Site Request Forgery (CSRF) vulnerability in HP products HP Color LaserJet Pro M280-M281 Multifunction Printer series (before v. | 8.8 |
| 2019-06-12 | CVE-2019-0996 | Cross-Site Request Forgery (CSRF) vulnerability in Microsoft Azure Devops Server 2019 A spoofing vulnerability exists in Azure DevOps Server when it improperly handles requests to authorize applications, resulting in a cross-site request forgery, aka 'Azure DevOps Server Spoofing Vulnerability'. | 6.5 |
| 2019-06-11 | CVE-2019-3410 | Cross-Site Request Forgery (CSRF) vulnerability in ZTE Wf820+ LTE Outdoor CPE Firmware All versions up to UKBB_WF820+_1.0.0B06 of ZTE WF820+ LTE Outdoor CPE product are impacted by Cross-Site Request Forgery vulnerability,which stems from the fact that WEB applications do not adequately verify whether requests come from trusted users. | 8.8 |
| 2019-06-11 | CVE-2019-10338 | Cross-Site Request Forgery (CSRF) vulnerability in Jenkins JX Resources A cross-site request forgery vulnerability in Jenkins JX Resources Plugin 1.0.36 and earlier in GlobalPluginConfiguration#doValidateClient allowed attackers to have Jenkins connect to an attacker-specified Kubernetes server, potentially leaking credentials. | 8.8 |
| 2019-06-11 | CVE-2019-10331 | Cross-Site Request Forgery (CSRF) vulnerability in Jenkins Electricflow A cross-site request forgery vulnerability in Jenkins ElectricFlow Plugin 1.1.5 and earlier in Configuration#doTestConnection allowed attackers to connect to an attacker-specified URL using attacker-specified credentials. | 4.3 |
| 2019-06-10 | CVE-2019-11517 | Cross-Site Request Forgery (CSRF) vulnerability in Wampserver WampServer before 3.1.9 has CSRF in add_vhost.php because the synchronizer pattern implemented as remediation of CVE-2018-8817 was incomplete. | 6.5 |
| 2019-06-07 | CVE-2018-10696 | Cross-Site Request Forgery (CSRF) vulnerability in Moxa Awk-3121 Firmware 1.14 An issue was discovered on Moxa AWK-3121 1.14 devices. | 8.8 |
| 2019-06-05 | CVE-2019-1881 | Cross-Site Request Forgery (CSRF) vulnerability in Cisco Industrial Network Director 1.5(0.250) A vulnerability in the web-based management interface of Cisco Industrial Network Director (IND) could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack and perform arbitrary actions on an affected device. | 8.8 |
| 2019-06-05 | CVE-2019-12616 | Cross-Site Request Forgery (CSRF) vulnerability in PHPmyadmin An issue was discovered in phpMyAdmin before 4.9.0. | 6.5 |
| 2019-06-03 | CVE-2019-9883 | Cross-Site Request Forgery (CSRF) vulnerability in Hgiga products Multi modules of MailSherlock MSR35 and MSR45 lead to a CSRF vulnerability. | 8.8 |