Vulnerabilities > Cross-Site Request Forgery (CSRF)
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-07-09 | CVE-2024-40039 | Cross-Site Request Forgery (CSRF) vulnerability in Idccms Project Idccms 1.35 idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/userGroup_deal.php?mudi=del | 8.8 |
| 2024-07-09 | CVE-2024-27783 | Cross-Site Request Forgery (CSRF) vulnerability in Fortinet Fortiaiops 2.0.0 Multiple cross-site request forgery (CSRF) vulnerabilities [CWE-352] in FortiAIOps version 2.0.0 may allow an unauthenticated remote attacker to perform arbitrary actions on behalf of an authenticated user via tricking the victim to execute malicious GET requests. | 8.8 |
| 2024-07-08 | CVE-2023-47677 | Cross-Site Request Forgery (CSRF) vulnerability in multiple products A cross-site request forgery (csrf) vulnerability exists in the boa CSRF protection functionality of Realtek rtl819x Jungle SDK v3.4.11. | 8.8 |
| 2024-07-07 | CVE-2024-40601 | Cross-Site Request Forgery (CSRF) vulnerability in Mediawiki An issue was discovered in the MediaWikiChat extension for MediaWiki through 1.42.1. | 6.5 |
| 2024-07-07 | CVE-2024-40603 | Cross-Site Request Forgery (CSRF) vulnerability in Mediawiki An issue was discovered in the ArticleRatings extension for MediaWiki through 1.42.1. | 4.3 |
| 2024-07-04 | CVE-2024-5943 | Cross-Site Request Forgery (CSRF) vulnerability in Kylephillips Nested Pages The Nested Pages plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 3.2.7. | 8.8 |
| 2024-07-03 | CVE-2024-2040 | Cross-Site Request Forgery (CSRF) vulnerability in 2Code Himer The Himer WordPress theme before 2.1.1 does not have CSRF checks in some places, which could allow attackers to make users join private groups via a CSRF attack | 4.3 |
| 2024-07-03 | CVE-2024-2233 | Cross-Site Request Forgery (CSRF) vulnerability in 2Code Himer The Himer WordPress theme before 2.1.1 does not have CSRF checks in some places, which could allow attackers to make logged in users perform unwanted actions via CSRF attacks. | 4.3 |
| 2024-07-03 | CVE-2024-2235 | Cross-Site Request Forgery (CSRF) vulnerability in 2Code Himer The Himer WordPress theme before 2.1.1 does not have CSRF checks in some places, which could allow attackers to make users vote on any polls, including those they don't have access to via a CSRF attack | 4.3 |
| 2024-07-03 | CVE-2024-2376 | Cross-Site Request Forgery (CSRF) vulnerability in 2Code Wpqa Builder The WPQA Builder WordPress plugin before 6.1.1 does not have CSRF checks in some places, which could allow attackers to make logged in users perform unwanted actions via CSRF attacks | 8.8 |