Vulnerabilities > Cross-Site Request Forgery (CSRF)
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-04-16 | CVE-2018-10132 | Cross-Site Request Forgery (CSRF) vulnerability in Pbootcms 0.9.8 PbootCMS v0.9.8 has CSRF via an admin.php/Message/mod/id/19.html?backurl=/index.php request, resulting in PHP code injection in the recontent parameter. | 8.8 |
| 2018-04-16 | CVE-2018-10127 | Cross-Site Request Forgery (CSRF) vulnerability in Xyhcms Project Xyhcms 3.5 An issue was discovered in XYHCMS 3.5. | 8.8 |
| 2018-04-16 | CVE-2018-10117 | Cross-Site Request Forgery (CSRF) vulnerability in Icmsdev Icms 7.0.7 An issue was discovered in idreamsoft iCMS V7.0.7. | 8.8 |
| 2018-04-13 | CVE-2017-0362 | Cross-Site Request Forgery (CSRF) vulnerability in multiple products Mediawiki before 1.28.1 / 1.27.2 / 1.23.16 contains a flaw where the "Mark all pages visited" on the watchlist does not require a CSRF token. | 8.8 |
| 2018-04-12 | CVE-2018-6934 | Cross-Site Request Forgery (CSRF) vulnerability in Ordermanagementscript Online Tutoring Script 2.0.3 CSRF exists in student/personal-info in PHP Scripts Mall Online Tutoring Script 2.0.3. | 8.8 |
| 2018-04-12 | CVE-2015-0151 | Cross-Site Request Forgery (CSRF) vulnerability in Dlink Dir-815 Firmware Cross-site request forgery (CSRF) vulnerability in D-Link DIR-815 devices with firmware before 2.07.B01 allows remote attackers to hijack the authentication of arbitrary users for requests that insert XSS sequences. | 8.8 |
| 2018-04-11 | CVE-2018-10048 | Cross-Site Request Forgery (CSRF) vulnerability in Iscripts Eswap 2.4 iScripts eSwap v2.4 has CSRF via "registration_settings.php" in the Admin Panel. | 8.8 |
| 2018-04-11 | CVE-2018-10031 | Cross-Site Request Forgery (CSRF) vulnerability in Cmsmadesimple CMS Made Simple CMS Made Simple (aka CMSMS) 2.2.7 has CSRF in admin/moduleinterface.php. | 8.8 |
| 2018-04-11 | CVE-2018-10030 | Cross-Site Request Forgery (CSRF) vulnerability in Cmsmadesimple CMS Made Simple CMS Made Simple (aka CMSMS) 2.2.7 has CSRF in admin/siteprefs.php. | 8.8 |
| 2018-04-10 | CVE-2018-9927 | Cross-Site Request Forgery (CSRF) vulnerability in Wuzhicms 4.1.0 An issue was discovered in WUZHI CMS 4.1.0. | 8.8 |