Vulnerabilities > Cross-Site Request Forgery (CSRF)
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-07-24 | CVE-2017-3187 | Cross-Site Request Forgery (CSRF) vulnerability in Dotcms The dotCMS administration panel, versions 3.7.1 and earlier, are vulnerable to cross-site request forgery. | 8.8 |
| 2018-07-20 | CVE-2018-14420 | Cross-Site Request Forgery (CSRF) vulnerability in Metinfo 6.0.0 MetInfo 6.0.0 allows a CSRF attack to add a user account via a doaddsave action to admin/index.php, as demonstrated by an admin/index.php?anyid=47&n=admin&c=admin_admin&a=doaddsave URI. | 8.8 |
| 2018-07-18 | CVE-2018-0402 | Cross-Site Request Forgery (CSRF) vulnerability in Cisco products Multiple vulnerabilities in the web-based management interface of Cisco Unified Contact Center Express (Unified CCX) could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack. | 8.8 |
| 2018-07-17 | CVE-2018-14331 | Cross-Site Request Forgery (CSRF) vulnerability in Xiaocms X1 20140305 An issue was discovered in XiaoCms X1 v20140305. | 8.8 |
| 2018-07-15 | CVE-2018-14069 | Cross-Site Request Forgery (CSRF) vulnerability in Srcms Project Srcms 2.3.1 An issue was discovered in SRCMS V2.3.1. | 8.8 |
| 2018-07-15 | CVE-2018-14068 | Cross-Site Request Forgery (CSRF) vulnerability in Srcms Project Srcms 2.3.1 An issue was discovered in SRCMS V2.3.1. | 8.8 |
| 2018-07-13 | CVE-2016-6578 | Cross-Site Request Forgery (CSRF) vulnerability in Filecloud CodeLathe FileCloud, version 13.0.0.32841 and earlier, contains a global cross-site request forgery (CSRF) vulnerability. | 8.8 |
| 2018-07-13 | CVE-2016-6557 | Cross-Site Request Forgery (CSRF) vulnerability in Asus products In ASUS RP-AC52 access points with firmware version 1.0.1.1s and possibly earlier, the web interface, the web interface does not sufficiently verify whether a valid request was intentionally provided by the user. | 8.8 |
| 2018-07-13 | CVE-2018-1000206 | Cross-Site Request Forgery (CSRF) vulnerability in Jfrog Artifactory JFrog Artifactory version since 5.11 contains a Cross ite Request Forgery (CSRF) vulnerability in UI rest endpoints that can result in Classic CSRF attack allowing an attacker to perform actions as logged in user. | 8.8 |
| 2018-07-13 | CVE-2018-14029 | Cross-Site Request Forgery (CSRF) vulnerability in Creatiwity Witycms 0.6.2 CSRF vulnerability in admin/user/edit in Creatiwity wityCMS 0.6.2 allows an attacker to take over a user account, as demonstrated by modifying the account's email field. | 8.8 |