Vulnerabilities > Cross-Site Request Forgery (CSRF)
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2019-07-30 | CVE-2019-14327 | Cross-Site Request Forgery (CSRF) vulnerability in Custom Simple RSS Project Custom Simple RSS A CSRF vulnerability in Settings form in the Custom Simple Rss plugin 2.0.6 for WordPress allows attackers to change the plugin settings. | 4.3 |
2019-07-29 | CVE-2016-10766 | Cross-Site Request Forgery (CSRF) vulnerability in EDX Edx-Platform edx-platform before 2016-06-06 allows CSRF. | 6.8 |
2019-07-28 | CVE-2019-14328 | Cross-Site Request Forgery (CSRF) vulnerability in Simple-Membership-Plugin Simple Membership The Simple Membership plugin before 3.8.5 for WordPress has CSRF affecting the Bulk Operation section. | 6.8 |
2019-07-26 | CVE-2019-14228 | Cross-Site Request Forgery (CSRF) vulnerability in Angry-Frog Xavier 3.0 Xavier PHP Management Panel 3.0 is vulnerable to Reflected POST-based XSS via the username parameter when registering a new user at admin/includes/adminprocess.php. | 4.3 |
2019-07-25 | CVE-2019-4212 | Cross-Site Request Forgery (CSRF) vulnerability in IBM Qradar Security Information and Event Manager IBM QRadar SIEM 7.2 and 7.3 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. | 8.8 |
2019-07-23 | CVE-2019-11712 | Cross-Site Request Forgery (CSRF) vulnerability in Mozilla Firefox and Firefox ESR POST requests made by NPAPI plugins, such as Flash, that receive a status 308 redirect response can bypass CORS requirements. | 6.8 |
2019-07-20 | CVE-2019-12934 | Cross-Site Request Forgery (CSRF) vulnerability in Wp-Code-Highlightjs Project Wp-Code-Highlightjs An issue was discovered in the wp-code-highlightjs plugin through 0.6.2 for WordPress. | 6.8 |
2019-07-19 | CVE-2018-17792 | Cross-Site Request Forgery (CSRF) vulnerability in Altn Mdaemon Webmail 14.0 MDaemon Webmail (formerly WorldClient) has CSRF. | 6.8 |
2019-07-19 | CVE-2019-13974 | Cross-Site Request Forgery (CSRF) vulnerability in Layerbb 1.1.3 LayerBB 1.1.3 allows conversations.php/cmd/new CSRF. | 6.8 |
2019-07-18 | CVE-2019-7953 | Cross-Site Request Forgery (CSRF) vulnerability in Adobe Experience Manager Adobe Experience Manager version 6.4 and ealier have a Cross-Site Request Forgery vulnerability. | 4.3 |