Vulnerabilities > Cross-Site Request Forgery (CSRF)
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-07-10 | CVE-2018-12628 | Cross-Site Request Forgery (CSRF) vulnerability in Eventum Project Eventum An issue was discovered in Eventum 3.5.0. | 6.8 |
| 2019-07-08 | CVE-2019-12923 | Cross-Site Request Forgery (CSRF) vulnerability in Mailenable In MailEnable Enterprise Premium 10.23, the potential cross-site request forgery (CSRF) protection mechanism was not implemented correctly and it was possible to bypass it by removing the anti-CSRF token parameter from the request. | 4.3 |
| 2019-07-08 | CVE-2019-13401 | Cross-Site Request Forgery (CSRF) vulnerability in Fortinet Fcm-Mb40 Firmware 1.2.0.0 Dynacolor FCM-MB40 v1.2.0.0 devices have CSRF in all scripts under cgi-bin/. | 6.8 |
| 2019-07-07 | CVE-2019-13183 | Cross-Site Request Forgery (CSRF) vulnerability in Flarum 0.1.0 Flarum before 0.1.0-beta.9 allows CSRF against all POST endpoints, as demonstrated by changing admin settings. | 6.8 |
| 2019-07-06 | CVE-2019-13370 | Cross-Site Request Forgery (CSRF) vulnerability in Ignitedcms 1.0.0/1.0.1 index.php/admin/permissions in Ignited CMS through 2017-02-19 allows CSRF to add an administrator. | 8.8 |
| 2019-07-05 | CVE-2019-5984 | Cross-Site Request Forgery (CSRF) vulnerability in Waspthemes Custom CSS PRO Cross-site request forgery (CSRF) vulnerability in Custom CSS Pro 1.0.3 and earlier allows remote attackers to hijack the authentication of administrators via unspecified vectors. | 8.8 |
| 2019-07-05 | CVE-2019-5983 | Cross-Site Request Forgery (CSRF) vulnerability in Fla-Shop Html5 Maps Cross-site request forgery (CSRF) vulnerability in HTML5 Maps 1.6.5.6 and earlier allows remote attackers to hijack the authentication of administrators via unspecified vectors. | 8.8 |
| 2019-07-05 | CVE-2019-5980 | Cross-Site Request Forgery (CSRF) vulnerability in Meomundo Related Youtube Videos Cross-site request forgery (CSRF) vulnerability in Related YouTube Videos versions prior to 1.9.9 allows remote attackers to hijack the authentication of administrators via unspecified vectors. | 8.8 |
| 2019-07-05 | CVE-2019-5979 | Cross-Site Request Forgery (CSRF) vulnerability in Najeebmedia Personalized Woocommerce Cart Page Cross-site request forgery (CSRF) vulnerability in Personalized WooCommerce Cart Page 2.4 and earlier allows remote attackers to hijack the authentication of administrators via unspecified vectors. | 8.8 |
| 2019-07-05 | CVE-2019-5974 | Cross-Site Request Forgery (CSRF) vulnerability in Contest-Gallery Contest Gallery Cross-site request forgery (CSRF) vulnerability in Contest Gallery versions prior to 10.4.5 allows remote attackers to hijack the authentication of administrators via unspecified vectors. | 6.8 |