Vulnerabilities > Cross-Site Request Forgery (CSRF)
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-06-21 | CVE-2024-37198 | Cross-Site Request Forgery (CSRF) vulnerability in Blazethemes Digital Newspaper Cross-Site Request Forgery (CSRF) vulnerability in blazethemes Digital Newspaper.This issue affects Digital Newspaper: from n/a through 1.1.5. | 8.8 |
| 2024-06-21 | CVE-2024-37212 | Cross-Site Request Forgery (CSRF) vulnerability in Ali2Woo 3.3.5 Cross-Site Request Forgery (CSRF) vulnerability in Ali2Woo Ali2Woo Lite.This issue affects Ali2Woo Lite: from n/a through 3.3.5. | 8.8 |
| 2024-06-21 | CVE-2024-37227 | Cross-Site Request Forgery (CSRF) vulnerability in Tribulant Newsletters Cross Site Request Forgery (CSRF) vulnerability in Tribulant Newsletters.This issue affects Newsletters: from n/a through 4.9.7. | 8.8 |
| 2024-06-21 | CVE-2024-37230 | Cross-Site Request Forgery (CSRF) vulnerability in Rarathemes Book Landing Page Cross-Site Request Forgery (CSRF) vulnerability in Rara Theme Book Landing Page.This issue affects Book Landing Page: from n/a through 1.2.3. | 8.8 |
| 2024-06-21 | CVE-2024-35770 | Cross-Site Request Forgery (CSRF) vulnerability in Davekiss Vimeography Cross-Site Request Forgery (CSRF) vulnerability in Dave Kiss Vimeography: Vimeo Video Gallery WordPress Plugin.This issue affects Vimeography: Vimeo Video Gallery WordPress Plugin: from n/a through 2.4.1. | 8.8 |
| 2024-06-21 | CVE-2024-35771 | Cross-Site Request Forgery (CSRF) vulnerability in Presscustomizr Customizr Cross-Site Request Forgery (CSRF) vulnerability in presscustomizr Customizr.This issue affects Customizr: from n/a through 4.4.21. | 8.8 |
| 2024-06-21 | CVE-2024-35772 | Cross-Site Request Forgery (CSRF) vulnerability in Presscustomizr Hueman Cross-Site Request Forgery (CSRF) vulnerability in presscustomizr Hueman.This issue affects Hueman: from n/a through 3.7.24. | 8.8 |
| 2024-06-21 | CVE-2024-4382 | Cross-Site Request Forgery (CSRF) vulnerability in Wielebenwir Commonsbooking The CB (legacy) WordPress plugin through 0.9.4.18 does not have CSRF checks in some bulk actions, which could allow attackers to make logged in admins perform unwanted actions, such as deleting codes, timeframes, and bookings via CSRF attacks | 6.5 |
| 2024-06-21 | CVE-2024-4474 | Cross-Site Request Forgery (CSRF) vulnerability in Onetarek WP Logs Book 1.0.1 The WP Logs Book WordPress plugin through 1.0.1 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack | 4.3 |
| 2024-06-21 | CVE-2024-4475 | Cross-Site Request Forgery (CSRF) vulnerability in Onetarek WP Logs Book 1.0.1 The WP Logs Book WordPress plugin through 1.0.1 does not have CSRF check when clearing logs, which could allow attackers to make a logged in admin clear the logs them via a CSRF attack | 4.3 |