Vulnerabilities > Cross-Site Request Forgery (CSRF)
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-08-21 | CVE-2019-12624 | Cross-Site Request Forgery (CSRF) vulnerability in Cisco IOS XE A vulnerability in the web-based management interface of Cisco IOS XE New Generation Wireless Controller (NGWC) could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack and perform arbitrary actions on an affected device. | 6.8 |
| 2019-08-21 | CVE-2017-18521 | Cross-Site Request Forgery (CSRF) vulnerability in Wp-Kama Democracy Poll The democracy-poll plugin before 5.4 for WordPress has CSRF via wp-admin/options-general.php?page=democracy-poll&subpage=l10n. | 6.8 |
| 2019-08-21 | CVE-2016-10903 | Cross-Site Request Forgery (CSRF) vulnerability in Godaddy Email Marketing The GoDaddy godaddy-email-marketing-sign-up-forms plugin before 1.1.3 for WordPress has CSRF. | 6.8 |
| 2019-08-21 | CVE-2016-10902 | Cross-Site Request Forgery (CSRF) vulnerability in Gowebsolutions WP Customer Reviews The wp-customer-reviews plugin before 3.0.9 for WordPress has CSRF in the admin tools. | 6.8 |
| 2019-08-20 | CVE-2019-4167 | Cross-Site Request Forgery (CSRF) vulnerability in IBM Storediq IBM StoredIQ 7.6.0 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. | 6.5 |
| 2019-08-20 | CVE-2019-4117 | Cross-Site Request Forgery (CSRF) vulnerability in IBM Cloud Private IBM Cloud Private 3.1.1 and 3.1.2 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. | 8.8 |
| 2019-08-20 | CVE-2017-18523 | Cross-Site Request Forgery (CSRF) vulnerability in Eelv Newsletter Project Eelv Newsletter The eelv-newsletter plugin before 4.6.1 for WordPress has CSRF in the address book. | 6.8 |
| 2019-08-20 | CVE-2019-15238 | Cross-Site Request Forgery (CSRF) vulnerability in Cformsii Project Cformsii The cforms2 plugin before 15.0.2 for WordPress has CSRF related to the IP address field. | 6.8 |
| 2019-08-20 | CVE-2017-18569 | Cross-Site Request Forgery (CSRF) vulnerability in Mythemeshop MY WP Translate The my-wp-translate plugin before 1.0.4 for WordPress has CSRF. | 6.8 |
| 2019-08-20 | CVE-2016-10915 | Cross-Site Request Forgery (CSRF) vulnerability in Supsystic Popup The popup-by-supsystic plugin before 1.7.9 for WordPress has CSRF. | 6.8 |