Vulnerabilities > Cross-Site Request Forgery (CSRF)

DATE CVE VULNERABILITY TITLE RISK
2024-06-06 CVE-2023-6968 Cross-Site Request Forgery (CSRF) vulnerability in Themoneytizer the Moneytizer
The The Moneytizer plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 9.5.20.
network
low complexity
themoneytizer CWE-352
5.4
5.4
2024-06-05 CVE-2024-36667 Cross-Site Request Forgery (CSRF) vulnerability in Idccms Project Idccms 1.35
idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /admin/idcProType_deal.php?mudi=add&nohrefStr=close
network
low complexity
idccms-project CWE-352
8.8
8.8
2024-06-05 CVE-2024-36668 Cross-Site Request Forgery (CSRF) vulnerability in Idccms Project Idccms 1.35
idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component admin/type_deal.php?mudi=del
network
low complexity
idccms-project CWE-352
8.8
8.8
2024-06-05 CVE-2024-36669 Cross-Site Request Forgery (CSRF) vulnerability in Idccms Project Idccms 1.35
idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component admin/type_deal.php?mudi=add.
network
low complexity
idccms-project CWE-352
8.8
8.8
2024-06-04 CVE-2024-36547 Cross-Site Request Forgery (CSRF) vulnerability in Idccms 1.35
idccms V1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component admin/vpsClass_deal.php?mudi=add
network
low complexity
idccms CWE-352
8.8
8.8
2024-06-04 CVE-2024-36548 Cross-Site Request Forgery (CSRF) vulnerability in Idccms 1.35
idccms V1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) via admin/vpsCompany_deal.php?mudi=del
network
low complexity
idccms CWE-352
8.8
8.8
2024-06-04 CVE-2024-36549 Cross-Site Request Forgery (CSRF) vulnerability in Idccms 1.35
idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) via /admin/vpsCompany_deal.php?mudi=rev&nohrefStr=close
network
low complexity
idccms CWE-352
8.8
8.8
2024-06-04 CVE-2024-36550 Cross-Site Request Forgery (CSRF) vulnerability in Idccms 1.35
idccms V1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) via /admin/vpsCompany_deal.php?mudi=add&nohrefStr=close
network
low complexity
idccms CWE-352
8.8
8.8
2024-05-31 CVE-2024-34008 Cross-Site Request Forgery (CSRF) vulnerability in Moodle
Actions in the admin management of analytics models did not include the necessary token to prevent a CSRF risk.
network
low complexity
moodle CWE-352
8.8
8.8
2024-05-23 CVE-2023-7045 Cross-Site Request Forgery (CSRF) vulnerability in Gitlab
A CSRF vulnerability exists within GitLab CE/EE from versions 13.11 before 16.10.6, from 16.11 before 16.11.3, from 17.0 before 17.0.1.
network
low complexity
gitlab CWE-352
6.1
6.1