Vulnerabilities > Cross-Site Request Forgery (CSRF)
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-07-31 | CVE-2019-10359 | Cross-Site Request Forgery (CSRF) vulnerability in Jenkins M2Release A cross-site request forgery vulnerability in Jenkins Maven Release Plugin 0.14.0 and earlier in the M2ReleaseAction#doSubmit method allowed attackers to perform releases with attacker-specified options. | 6.3 |
| 2019-07-30 | CVE-2019-14327 | Cross-Site Request Forgery (CSRF) vulnerability in Custom Simple RSS Project Custom Simple RSS A CSRF vulnerability in Settings form in the Custom Simple Rss plugin 2.0.6 for WordPress allows attackers to change the plugin settings. | 6.5 |
| 2019-07-29 | CVE-2016-10766 | Cross-Site Request Forgery (CSRF) vulnerability in EDX Edx-Platform edx-platform before 2016-06-06 allows CSRF. | 8.8 |
| 2019-07-28 | CVE-2019-14328 | Cross-Site Request Forgery (CSRF) vulnerability in Simple-Membership-Plugin Simple Membership The Simple Membership plugin before 3.8.5 for WordPress has CSRF affecting the Bulk Operation section. | 8.8 |
| 2019-07-25 | CVE-2019-4212 | Cross-Site Request Forgery (CSRF) vulnerability in IBM Qradar Security Information and Event Manager IBM QRadar SIEM 7.2 and 7.3 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. | 8.8 |
| 2019-07-23 | CVE-2019-11712 | Cross-Site Request Forgery (CSRF) vulnerability in Mozilla Firefox POST requests made by NPAPI plugins, such as Flash, that receive a status 308 redirect response can bypass CORS requirements. | 8.8 |
| 2019-07-19 | CVE-2018-17792 | Cross-Site Request Forgery (CSRF) vulnerability in Altn Mdaemon Webmail 14.0 MDaemon Webmail (formerly WorldClient) has CSRF. | 8.8 |
| 2019-07-19 | CVE-2019-13974 | Cross-Site Request Forgery (CSRF) vulnerability in Layerbb 1.1.3 LayerBB 1.1.3 allows conversations.php/cmd/new CSRF. | 8.8 |
| 2019-07-18 | CVE-2019-7953 | Cross-Site Request Forgery (CSRF) vulnerability in Adobe Experience Manager Adobe Experience Manager version 6.4 and ealier have a Cross-Site Request Forgery vulnerability. | 6.5 |
| 2019-07-18 | CVE-2019-13961 | Cross-Site Request Forgery (CSRF) vulnerability in Flatcore A CSRF vulnerability was found in flatCore before 1.5, leading to the upload of arbitrary .php files via acp/core/files.upload-script.php. | 8.8 |