Vulnerabilities > Cross-Site Request Forgery (CSRF)
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-07-12 | CVE-2018-14014 | Cross-Site Request Forgery (CSRF) vulnerability in Super CMS Project Super CMS 20150505 In waimai Super Cms 20150505, there is a CSRF vulnerability that can add an admin account via admin.php?m=Member&a=adminadd. | 8.8 |
| 2018-07-12 | CVE-2018-12540 | Cross-Site Request Forgery (CSRF) vulnerability in Eclipse Vert.X In version from 3.0.0 to 3.5.2 of Eclipse Vert.x, the CSRFHandler do not assert that the XSRF Cookie matches the returned XSRF header/form parameter. | 8.8 |
| 2018-07-12 | CVE-2018-10895 | Cross-Site Request Forgery (CSRF) vulnerability in Qutebrowser qutebrowser before version 1.4.1 is vulnerable to a cross-site request forgery flaw that allows websites to access 'qute://*' URLs. | 8.8 |
| 2018-07-11 | CVE-2018-10232 | Cross-Site Request Forgery (CSRF) vulnerability in Topdesk 5.7/8.05.001/8.05.016 Cross-site request forgery (CSRF) vulnerability in TOPdesk before 8.05.017 (June 2018 version) and before 5.7.SR9 allows remote attackers to hijack the authentication of authenticated users for requests that can obtain sensitive information via unspecified vectors. | 6.5 |
| 2018-07-11 | CVE-2018-13989 | Cross-Site Request Forgery (CSRF) vulnerability in Arcelikas Grundig Smart Inter@Ctive Firmware 3.0 Grundig Smart Inter@ctive TV 3.0 devices allow CSRF attacks via a POST request to TCP port 8085 containing a predictable ID value, as demonstrated by a /sendrcpackage?keyid=-2544&keysymbol=-4081 request to shut off the device. | 8.8 |
| 2018-07-09 | CVE-2018-13793 | Cross-Site Request Forgery (CSRF) vulnerability in Abbyy Flexicapture Multiple Cross Site Request Forgery (CSRF) vulnerabilities in the HTTP API in ABBYY FlexiCapture before 12 Release 1 Update 7 exist in Web Verification, Web Scanning, Web Capture, Monitoring and Administration, and Login. | 8.8 |
| 2018-07-08 | CVE-2018-13445 | Cross-Site Request Forgery (CSRF) vulnerability in Seacms 6.61 An issue was discovered in SeaCMS 6.61. | 8.8 |
| 2018-07-08 | CVE-2018-13444 | Cross-Site Request Forgery (CSRF) vulnerability in Seacms 6.61 An issue was discovered in SeaCMS 6.61. | 8.8 |
| 2018-07-07 | CVE-2018-11349 | Cross-Site Request Forgery (CSRF) vulnerability in Jirafeau The administration panel of Jirafeau before 3.4.1 is vulnerable to three CSRF attacks on search functionalities: search_by_name, search_by_hash, and search_link. | 8.8 |
| 2018-07-06 | CVE-2018-13407 | Cross-Site Request Forgery (CSRF) vulnerability in Jirafeau A CSRF issue was discovered in Jirafeau before 3.4.1. | 4.9 |