Vulnerabilities > Cross-Site Request Forgery (CSRF)

DATE CVE VULNERABILITY TITLE RISK
2024-12-06 CVE-2024-12003 The WP System plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.1.1.
network
low complexity
CWE-352
6.1
2024-12-05 CVE-2024-11341 The Simple Redirection plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.5.
network
low complexity
CWE-352
4.3
2024-12-04 CVE-2024-10832 The Posti Shipping plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 3.10.3.
network
low complexity
CWE-352
6.1
2024-12-04 CVE-2024-11813 The Pulsating Chat Button plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.3.6.
network
low complexity
CWE-352
6.1
2024-12-03 CVE-2024-41776 Cross-Site Request Forgery (CSRF) vulnerability in IBM Cognos Controller 11.0.0/11.0.1
IBM Cognos Controller 11.0.0 and 11.0.1 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts.
network
low complexity
ibm CWE-352
6.5
2024-11-27 CVE-2024-10521 The WordPress Contact Forms by Cimatti plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.9.2.
network
low complexity
CWE-352
4.3
2024-11-26 CVE-2024-11743 Cross-Site Request Forgery (CSRF) vulnerability in Mayurik Best House Rental Management System 1.0
A vulnerability, which was classified as problematic, was found in SourceCodester Best House Rental Management System 1.0.
network
low complexity
mayurik CWE-352
4.3
2024-11-26 CVE-2024-11342 The Skt NURCaptcha plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 3.5.0.
network
low complexity
CWE-352
6.1
2024-11-25 CVE-2024-11673 Cross-Site Request Forgery (CSRF) vulnerability in 1000Projects Bookstore Management System 1.0
A vulnerability, which was classified as problematic, has been found in 1000 Projects Bookstore Management System 1.0.
network
low complexity
1000projects CWE-352
4.3
2024-11-21 CVE-2024-10726 The Friendly Functions for Welcart plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.2.4.
network
low complexity
CWE-352
6.1