Vulnerabilities > Cross-Site Request Forgery (CSRF)
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-06-19 | CVE-2018-17387 | Cross-Site Request Forgery (CSRF) vulnerability in Ranksol Nimble Professional 1.0 CSRF exists in Nimble Messaging Bulk SMS Marketing Application 1.0 for adding an admin account. | 8.8 |
| 2019-06-19 | CVE-2018-17389 | Cross-Site Request Forgery (CSRF) vulnerability in Ranksol Live Call Support 1.5 CSRF exists in server.php in Live Call Support Application 1.5 for adding an admin account. | 8.8 |
| 2019-06-18 | CVE-2017-8334 | Cross-Site Request Forgery (CSRF) vulnerability in Securifi products An issue was discovered on Securifi Almond, Almond+, and Almond 2015 devices with firmware AL-R096. | 8.0 |
| 2019-06-18 | CVE-2017-8328 | Cross-Site Request Forgery (CSRF) vulnerability in Securifi products An issue was discovered on Securifi Almond, Almond+, and Almond 2015 devices with firmware AL-R096. | 8.8 |
| 2019-06-18 | CVE-2018-18802 | Cross-Site Request Forgery (CSRF) vulnerability in Tubigan Welcome to OUR Resort 1.0 The Tubigan "Welcome to our Resort" 1.0 software allows CSRF via admin/mod_users/controller.php?action=edit. | 8.8 |
| 2019-06-18 | CVE-2019-4142 | Cross-Site Request Forgery (CSRF) vulnerability in IBM Cloud Private IBM Cloud Private 2.1.0, 3.1.0, 3.1.1, and 3.1.2 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. | 8.8 |
| 2019-06-17 | CVE-2017-9381 | Cross-Site Request Forgery (CSRF) vulnerability in Getvera Veraedge Firmware and Veralite Firmware An issue was discovered on Vera VeraEdge 1.7.19 and Veralite 1.7.481 devices. | 8.8 |
| 2019-06-17 | CVE-2019-6325 | Cross-Site Request Forgery (CSRF) vulnerability in HP products HP Color LaserJet Pro M280-M281 Multifunction Printer series (before v. | 8.8 |
| 2019-06-12 | CVE-2019-0996 | Cross-Site Request Forgery (CSRF) vulnerability in Microsoft Azure Devops Server 2019 A spoofing vulnerability exists in Azure DevOps Server when it improperly handles requests to authorize applications, resulting in a cross-site request forgery, aka 'Azure DevOps Server Spoofing Vulnerability'. | 6.5 |
| 2019-06-11 | CVE-2019-3410 | Cross-Site Request Forgery (CSRF) vulnerability in ZTE Wf820+ LTE Outdoor CPE Firmware All versions up to UKBB_WF820+_1.0.0B06 of ZTE WF820+ LTE Outdoor CPE product are impacted by Cross-Site Request Forgery vulnerability,which stems from the fact that WEB applications do not adequately verify whether requests come from trusted users. | 8.8 |