Vulnerabilities > Cross-Site Request Forgery (CSRF)
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-01-09 | CVE-2023-6788 | Cross-Site Request Forgery (CSRF) vulnerability in Wpmet Metform Elementor Contact Form Builder The Metform Elementor Contact Form Builder plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 3.8.1. | 5.4 |
| 2024-01-08 | CVE-2023-52072 | Cross-Site Request Forgery (CSRF) vulnerability in Flycms Project Flycms 1.0 FlyCms v1.0 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /system/site/userconfig_updagte. | 8.8 |
| 2024-01-08 | CVE-2023-52073 | Cross-Site Request Forgery (CSRF) vulnerability in Flycms Project Flycms 1.0 FlyCms v1.0 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /system/site/config_footer_updagte. | 8.8 |
| 2024-01-08 | CVE-2023-52074 | Cross-Site Request Forgery (CSRF) vulnerability in Flycms Project Flycms 1.0 FlyCms v1.0 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component system/site/webconfig_updagte. | 8.8 |
| 2024-01-08 | CVE-2023-6532 | Cross-Site Request Forgery (CSRF) vulnerability in Wp-Blogs-Planetarium Project Wp-Blogs-Planetarium 1.0 The WP Blogs' Planetarium WordPress plugin through 1.0 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack | 8.8 |
| 2024-01-08 | CVE-2023-6845 | Cross-Site Request Forgery (CSRF) vulnerability in Theresehansen Commenttweets 0.6 The CommentTweets WordPress plugin through 0.6 does not have CSRF checks in some places, which could allow attackers to make logged in users perform unwanted actions via CSRF attacks | 8.8 |
| 2024-01-05 | CVE-2023-52119 | Cross-Site Request Forgery (CSRF) vulnerability in Icegram Engage Cross-Site Request Forgery (CSRF) vulnerability in Icegram Icegram Engage – WordPress Lead Generation, Popup Builder, CTA, Optins and Email List Building.This issue affects Icegram Engage – WordPress Lead Generation, Popup Builder, CTA, Optins and Email List Building: from n/a through 3.1.18. | 8.8 |
| 2024-01-05 | CVE-2023-52122 | Cross-Site Request Forgery (CSRF) vulnerability in Presstigers Simple JOB Board Cross-Site Request Forgery (CSRF) vulnerability in PressTigers Simple Job Board.This issue affects Simple Job Board: from n/a through 2.10.6. | 8.8 |
| 2024-01-05 | CVE-2023-52150 | Cross-Site Request Forgery (CSRF) vulnerability in Ovation Dynamic Content for Elementor Cross-Site Request Forgery (CSRF) vulnerability in Ovation S.R.L. | 8.8 |
| 2024-01-05 | CVE-2023-6493 | Cross-Site Request Forgery (CSRF) vulnerability in Averta Depicter Slider The Depicter Slider – Responsive Image Slider, Video Slider & Post Slider plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.0.6. | 4.3 |