Vulnerabilities > Cross-Site Request Forgery (CSRF)
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-05-14 | CVE-2017-12126 | Cross-Site Request Forgery (CSRF) vulnerability in Moxa Edr-810 Firmware 4.1 An exploitable cross-site request forgery vulnerability exists in the web server functionality of Moxa EDR-810 V4.1 build 17030317. | 8.8 |
| 2018-05-13 | CVE-2018-11018 | Cross-Site Request Forgery (CSRF) vulnerability in Pbootcms 1.0.7 An issue was discovered in PbootCMS v1.0.7. | 8.8 |
| 2018-05-12 | CVE-2018-11004 | Cross-Site Request Forgery (CSRF) vulnerability in Sdcms 1.5 An issue was discovered in SDcms v1.5. | 8.8 |
| 2018-05-12 | CVE-2018-11003 | Cross-Site Request Forgery (CSRF) vulnerability in Yxcms 1.4.7 An issue was discovered in YXcms 1.4.7. | 6.5 |
| 2018-05-11 | CVE-2018-6458 | Cross-Site Request Forgery (CSRF) vulnerability in Ehcp Easy Hosting Control Panel 0.37.12.B Easy Hosting Control Panel (EHCP) v0.37.12.b allows remote attackers to conduct cross-site request forgery (CSRF) attacks by leveraging lack of CSRF protection. | 8.8 |
| 2018-05-11 | CVE-2018-6023 | Cross-Site Request Forgery (CSRF) vulnerability in Fastweb Fastgate Firmware 0.00.47 Fastweb FASTgate 0.00.47 devices are vulnerable to CSRF, with impacts including Wi-Fi password changing, Guest Wi-Fi activating, etc. | 8.8 |
| 2018-05-10 | CVE-2018-10957 | Cross-Site Request Forgery (CSRF) vulnerability in Dlink Dir-868L Firmware 1.12 CSRF exists on D-Link DIR-868L devices, leading to (for example) a change to the Admin password. | 8.8 |
| 2018-05-05 | CVE-2018-10758 | Cross-Site Request Forgery (CSRF) vulnerability in Datenstrom Yellow 0.7.3 The edit/ URI in Datenstrom Yellow 0.7.3 has CSRF via a delete action that can delete articles. | 6.5 |
| 2018-05-03 | CVE-2018-10166 | Cross-Site Request Forgery (CSRF) vulnerability in Tp-Link EAP Controller 2.5.4/2.6.0 The web management interface in the TP-Link EAP Controller and Omada Controller versions 2.5.4_Windows/2.6.0_Windows does not have Anti-CSRF tokens in any forms. | 8.8 |
| 2018-05-01 | CVE-2013-0185 | Cross-Site Request Forgery (CSRF) vulnerability in Redhat Manageiq Enterprise Virtualization Manager Cross-site request forgery (CSRF) vulnerability in ManageIQ Enterprise Virtualization Manager (EVM) allows remote attackers to hijack the authentication of users for requests that have unspecified impact via unknown vectors. | 8.8 |