Vulnerabilities > Cross-Site Request Forgery (CSRF)
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-05-07 | CVE-2018-13993 | Cross-Site Request Forgery (CSRF) vulnerability in Phoenixcontact products The WebUI of PHOENIX CONTACT FL SWITCH 3xxx, 4xxx, 48xx versions 1.0 to 1.34 is prone to CSRF. | 8.8 |
| 2019-05-06 | CVE-2019-11569 | Cross-Site Request Forgery (CSRF) vulnerability in Veeam ONE Reporter 9.5.0.3201 Veeam ONE Reporter 9.5.0.3201 allows CSRF. | 8.8 |
| 2019-05-06 | CVE-2018-4066 | Cross-Site Request Forgery (CSRF) vulnerability in Sierrawireless Airlink Es450 Firmware 4.9.3 An exploitable cross-site request forgery vulnerability exists in the ACEManager functionality of Sierra Wireless AirLink ES450 FW 4.9.3. | 8.8 |
| 2019-05-06 | CVE-2019-5430 | Cross-Site Request Forgery (CSRF) vulnerability in UI Unifi Video In UniFi Video 3.10.0 and prior, due to the lack of CSRF protection, it is possible to abuse the Web API to make changes on the server configuration without the user consent, requiring the attacker to lure an authenticated user to access on attacker controlled page. | 8.8 |
| 2019-05-03 | CVE-2019-1857 | Cross-Site Request Forgery (CSRF) vulnerability in Cisco products A vulnerability in the web-based management interface of Cisco HyperFlex HX-Series could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack and perform arbitrary actions on an affected system. | 8.8 |
| 2019-05-03 | CVE-2019-1713 | Cross-Site Request Forgery (CSRF) vulnerability in Cisco Adaptive Security Appliance Software A vulnerability in the web-based management interface of Cisco Adaptive Security Appliance (ASA) Software could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack on an affected system. | 8.8 |
| 2019-04-30 | CVE-2019-11617 | Cross-Site Request Forgery (CSRF) vulnerability in Doorgets CMS 7.0 doorGets 7.0 has a CSRF vulnerability in /doorgets/app/requests/user/configurationRequest.php. | 8.8 |
| 2019-04-30 | CVE-2018-15206 | Cross-Site Request Forgery (CSRF) vulnerability in Bpcbt Smartvista 2 BPC SmartVista 2 has CSRF via SVFE2/pages/admpages/roles/createrole.jsf. | 8.8 |
| 2019-04-30 | CVE-2018-14930 | Cross-Site Request Forgery (CSRF) vulnerability in Polarisft Intellect Core Banking 9.7.1 An issue was discovered in the Armor module in Polaris FT Intellect Core Banking 9.7.1. | 8.8 |
| 2019-04-30 | CVE-2019-10315 | Cross-Site Request Forgery (CSRF) vulnerability in Jenkins Github Authentication Jenkins GitHub Authentication Plugin 0.31 and earlier did not use the state parameter of OAuth to prevent CSRF. | 8.8 |