Vulnerabilities > Cross-Site Request Forgery (CSRF)
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-05-26 | CVE-2018-11493 | Cross-Site Request Forgery (CSRF) vulnerability in Wuzhicms Wuzhi CMS 4.1.0 An issue was discovered in WUZHI CMS 4.1.0. | 8.8 |
| 2018-05-25 | CVE-2017-9641 | Cross-Site Request Forgery (CSRF) vulnerability in Osisoft PI Coresight PI Coresight 2016 R2 contains a cross-site request forgery vulnerability that may allow access to the PI system. | 8.8 |
| 2018-05-25 | CVE-2018-11445 | Cross-Site Request Forgery (CSRF) vulnerability in Easyservice Billing Project Easyservice Billing 1.0 A CSRF issue was discovered on the User Add/System Settings Page (system-settings-user-new2.php) in EasyService Billing 1.0. | 8.8 |
| 2018-05-25 | CVE-2018-11442 | Cross-Site Request Forgery (CSRF) vulnerability in Easyservice Billing Project Easyservice Billing 1.0 A CSRF issue was discovered in EasyService Billing 1.0, which was triggered via a quotation-new3-new2.php?add=true&id= URI, as demonstrated by adding a new quotation. | 8.8 |
| 2018-05-24 | CVE-2018-11405 | Cross-Site Request Forgery (CSRF) vulnerability in Kliqqi CMS 2.0.2 Kliqqi 2.0.2 has CSRF in admin/admin_users.php. | 8.8 |
| 2018-05-22 | CVE-2018-11371 | Cross-Site Request Forgery (CSRF) vulnerability in Skycaiji 1.2 SkyCaiji 1.2 allows CSRF to add an Administrator user. | 8.8 |
| 2018-05-21 | CVE-2018-11096 | Cross-Site Request Forgery (CSRF) vulnerability in Horse Market Sell & Rent Portal Project Horse Market Sell & Rent Portal 1.5.7 Horse Market Sell & Rent Portal Script 1.5.7 has a CSRF vulnerability through which an attacker can change all of the target's account information remotely. | 6.5 |
| 2018-05-21 | CVE-2018-11092 | Cross-Site Request Forgery (CSRF) vulnerability in Admin Notes Project Admin Notes 1.1 An issue was discovered in the Admin Notes plugin 1.1 for MyBB. | 6.5 |
| 2018-05-17 | CVE-2018-1434 | Cross-Site Request Forgery (CSRF) vulnerability in IBM products IBM SAN Volume Controller, IBM Storwize, IBM Spectrum Virtualize and IBM FlashSystem products ( 6.1, 6.2, 6.3, 6.4, 7.1, 7.2, 7.3, 7.4, 7.5, 7.6, 7.6.1, 7.7, 7.7.1, 7.8, 7.8.1, 8.1, and 8.1.1) are vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. | 8.8 |
| 2018-05-17 | CVE-2018-0270 | Cross-Site Request Forgery (CSRF) vulnerability in Cisco IOT Field Network Director 4.2(0.4) A vulnerability in the web-based management interface of Cisco IoT Field Network Director (IoT-FND) could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack and alter the data of existing users and groups on an affected device. | 8.8 |