Vulnerabilities > Cross-Site Request Forgery (CSRF)
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-04-10 | CVE-2024-31985 | Cross-Site Request Forgery (CSRF) vulnerability in Xwiki XWiki Platform is a generic wiki platform. | 5.4 |
| 2024-04-10 | CVE-2024-31986 | Cross-Site Request Forgery (CSRF) vulnerability in Xwiki XWiki Platform is a generic wiki platform. | 8.8 |
| 2024-04-10 | CVE-2024-31988 | Cross-Site Request Forgery (CSRF) vulnerability in Xwiki XWiki Platform is a generic wiki platform. | 8.8 |
| 2024-03-22 | CVE-2024-2449 | Cross-Site Request Forgery (CSRF) vulnerability in Progress Loadmaster 7.1.35.10/7.2.48.10 A cross-site request forgery vulnerability has been identified in LoadMaster. It is possible for a malicious actor, who has prior knowledge of the IP or hostname of a specific LoadMaster, to direct an authenticated LoadMaster administrator to a third-party site. | 7.5 |
| 2024-03-21 | CVE-2024-1213 | Cross-Site Request Forgery (CSRF) vulnerability in Easysocialfeed Easy Social Feed The Easy Social Feed – Social Photos Gallery – Post Feed – Like Box plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 6.5.4. | 4.3 |
| 2024-03-16 | CVE-2023-51512 | Cross-Site Request Forgery (CSRF) vulnerability in Woobewoo Product Table Cross Site Request Forgery (CSRF) vulnerability in WBW Product Table by WBW.This issue affects Product Table by WBW: from n/a through 1.8.6. | 8.8 |
| 2024-03-13 | CVE-2024-28195 | Cross-Site Request Forgery (CSRF) vulnerability in Yooooomi Your Spotify your_spotify is an open source, self hosted Spotify tracking dashboard. | 8.8 |
| 2024-03-12 | CVE-2024-2395 | Cross-Site Request Forgery (CSRF) vulnerability in Autopolis Bulgarisation for Woocommerce The Bulgarisation for WooCommerce plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 3.0.14. | 4.3 |
| 2024-03-12 | CVE-2023-4629 | Cross-Site Request Forgery (CSRF) vulnerability in Ladipage The LadiApp plugin for WordPress is vulnerable to Cross-Site Request Forgery due to a missing nonce check on the save_config() function in versions up to, and including, 4.3. | 4.3 |
| 2024-03-12 | CVE-2023-4729 | Cross-Site Request Forgery (CSRF) vulnerability in Ladipage The LadiApp plugin for WordPress is vulnerable to Cross-Site Request Forgery due to a missing nonce check on the publish_lp() function hooked via an AJAX action in versions up to, and including, 4.4. | 4.3 |