Vulnerabilities > Cross-Site Request Forgery (CSRF)

DATE CVE VULNERABILITY TITLE RISK
2018-08-28 CVE-2018-15884 Cross-Site Request Forgery (CSRF) vulnerability in Ricoh MP C4504Ex Firmware
RICOH MP C4504ex devices allow HTML Injection via the /web/entry/en/address/adrsSetUserWizard.cgi entryNameIn parameter.
network
ricoh CWE-352
6.8
6.8
2018-08-28 CVE-2014-6046 Cross-Site Request Forgery (CSRF) vulnerability in PHPmyfaq
Multiple cross-site request forgery (CSRF) vulnerabilities in phpMyFAQ before 2.8.13 allow remote attackers to hijack the authentication of unspecified users for requests that (1) delete active users by leveraging improper validation of CSRF tokens or that (2) delete open questions, (3) activate users, (4) publish FAQs, (5) add or delete Glossary, (6) add or delete FAQ news, or (7) add or delete comments or add votes by leveraging lack of a CSRF token.
network
phpmyfaq CWE-352
6.8
6.8
2018-08-25 CVE-2018-15851 Cross-Site Request Forgery (CSRF) vulnerability in Flexocms Project Flexo CMS 0.1.6
An issue was discovered in Flexo CMS v0.1.6. 		6.8
6.8
2018-08-25 CVE-2018-15850 Cross-Site Request Forgery (CSRF) vulnerability in Redaxo CMS 4.7.2
An issue was discovered in REDAXO CMS 4.7.2.
network
redaxo CWE-352
6.8
6.8
2018-08-25 CVE-2018-15849 Cross-Site Request Forgery (CSRF) vulnerability in Portfoliocms Project Portfoliocms 1.0.5
An issue was discovered in portfolioCMS 1.0.5. 		4.3
4.3
2018-08-25 CVE-2018-15848 Cross-Site Request Forgery (CSRF) vulnerability in Portfoliocms Project Portfoliocms 1.0.5
An issue was discovered in portfolioCMS 1.0.5. 		6.8
6.8
2018-08-25 CVE-2018-15846 Cross-Site Request Forgery (CSRF) vulnerability in Fledrcms Project Fledrcms
An issue was discovered in fledrCMS through 2014-02-03. 		6.8
6.8
2018-08-25 CVE-2018-15845 Cross-Site Request Forgery (CSRF) vulnerability in Gleezcms Gleez CMS 1.2.0
There is a CSRF vulnerability that can add an administrator account in Gleez CMS 1.2.0 via admin/users/add.
network
gleezcms CWE-352
6.8
6.8
2018-08-25 CVE-2018-15844 Cross-Site Request Forgery (CSRF) vulnerability in Damicms 6.0.0
An issue was discovered in DamiCMS 6.0.0.
network
damicms CWE-352
6.8
6.8
2018-08-24 CVE-2018-11502 Cross-Site Request Forgery (CSRF) vulnerability in Moderator LOG Notes Project Moderator LOG Notes 1.1
An issue was discovered in the Moderator Log Notes plugin 1.1 for MyBB. 		5.8
5.8