Vulnerabilities > Cross-Site Request Forgery (CSRF)
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-04-19 | CVE-2018-10188 | Cross-Site Request Forgery (CSRF) vulnerability in PHPmyadmin 4.8.0 phpMyAdmin 4.8.0 before 4.8.0-1 has CSRF, allowing an attacker to execute arbitrary SQL statements, related to js/db_operations.js, js/tbl_operations.js, libraries/classes/Operations.php, and sql.php. | 8.8 |
| 2018-04-19 | CVE-2018-10224 | Cross-Site Request Forgery (CSRF) vulnerability in Yzmcms 3.8 An issue was discovered in YzmCMS 3.8. | 6.8 |
| 2018-04-19 | CVE-2018-10223 | Cross-Site Request Forgery (CSRF) vulnerability in Yzmcms 3.8 An issue was discovered in YzmCMS 3.8. | 6.8 |
| 2018-04-19 | CVE-2018-10222 | Cross-Site Request Forgery (CSRF) vulnerability in Icmsdev Icms 7.0 An issue was discovered in idreamsoft iCMS V7.0. | 8.8 |
| 2018-04-17 | CVE-2018-10185 | Cross-Site Request Forgery (CSRF) vulnerability in Tuzicms 2.0.6 An issue was discovered in TuziCMS v2.0.6. | 8.8 |
| 2018-04-16 | CVE-2018-10137 | Cross-Site Request Forgery (CSRF) vulnerability in Iscripts Uberforx 2.2 iScripts UberforX 2.2 has CSRF in the "manage_settings" section of the Admin Panel via the /cms?section=manage_settings&action=edit URI. | 8.8 |
| 2018-04-16 | CVE-2018-10132 | Cross-Site Request Forgery (CSRF) vulnerability in Pbootcms 0.9.8 PbootCMS v0.9.8 has CSRF via an admin.php/Message/mod/id/19.html?backurl=/index.php request, resulting in PHP code injection in the recontent parameter. | 8.8 |
| 2018-04-16 | CVE-2018-10127 | Cross-Site Request Forgery (CSRF) vulnerability in Xyhcms Project Xyhcms 3.5 An issue was discovered in XYHCMS 3.5. | 8.8 |
| 2018-04-16 | CVE-2018-10117 | Cross-Site Request Forgery (CSRF) vulnerability in Icmsdev Icms 7.0.7 An issue was discovered in idreamsoft iCMS V7.0.7. | 8.8 |
| 2018-04-13 | CVE-2017-0362 | Cross-Site Request Forgery (CSRF) vulnerability in multiple products Mediawiki before 1.28.1 / 1.27.2 / 1.23.16 contains a flaw where the "Mark all pages visited" on the watchlist does not require a CSRF token. | 8.8 |