Vulnerabilities > Cross-Site Request Forgery (CSRF)
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-11-30 | CVE-2023-5803 | Cross-Site Request Forgery (CSRF) vulnerability in Businessdirectoryplugin Business Directory Cross-Site Request Forgery (CSRF) vulnerability in Business Directory Team Business Directory Plugin – Easy Listing Directories for WordPress allows Cross-Site Request Forgery.This issue affects Business Directory Plugin – Easy Listing Directories for WordPress: from n/a through 6.3.10. | 8.8 |
| 2023-11-30 | CVE-2023-48912 | Cross-Site Request Forgery (CSRF) vulnerability in Iteachyou Dreamer CMS 4.1.3 Dreamer CMS v4.1.3 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /admin/archives/edit. | 8.8 |
| 2023-11-30 | CVE-2023-48913 | Cross-Site Request Forgery (CSRF) vulnerability in Iteachyou Dreamer CMS 4.1.3 Dreamer CMS v4.1.3 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /admin/archives/delete. | 8.8 |
| 2023-11-30 | CVE-2023-48914 | Cross-Site Request Forgery (CSRF) vulnerability in Iteachyou Dreamer CMS 4.1.3 Dreamer CMS v4.1.3 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /admin/archives/add. | 8.8 |
| 2023-11-30 | CVE-2023-48284 | Cross-Site Request Forgery (CSRF) vulnerability in Webtoffee Decorator Cross-Site Request Forgery (CSRF) vulnerability in WebToffee Decorator – WooCommerce Email Customizer allows Cross Site Request Forgery.This issue affects Decorator – WooCommerce Email Customizer: from n/a through 1.2.7. | 8.8 |
| 2023-11-30 | CVE-2023-5772 | Cross-Site Request Forgery (CSRF) vulnerability in Bowo Debug LOG Manager The Debug Log Manager plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.2.1. | 4.3 |
| 2023-11-29 | CVE-2023-49655 | Cross-Site Request Forgery (CSRF) vulnerability in Jenkins Matlab 2.11.0 A cross-site request forgery (CSRF) vulnerability in Jenkins MATLAB Plugin 2.11.0 and earlier allows attackers to have Jenkins parse an XML file from the Jenkins controller file system. | 8.8 |
| 2023-11-29 | CVE-2023-49673 | Cross-Site Request Forgery (CSRF) vulnerability in Jenkins products A cross-site request forgery (CSRF) vulnerability in Jenkins NeuVector Vulnerability Scanner Plugin 1.22 and earlier allows attackers to connect to an attacker-specified hostname and port using attacker-specified username and password. | 8.8 |
| 2023-11-24 | CVE-2023-6251 | Cross-Site Request Forgery (CSRF) vulnerability in Checkmk 2.0.0/2.1.0/2.2.0 Cross-site Request Forgery (CSRF) in Checkmk < 2.2.0p15, < 2.1.0p37, <= 2.0.0p39 allow an authenticated attacker to delete user-messages for individual users. | 3.5 |
| 2023-11-23 | CVE-2023-41792 | Cross-Site Request Forgery (CSRF) vulnerability in Artica Pandora FMS Cross-Site Request Forgery (CSRF) vulnerability in Pandora FMS on all allows Cross-Site Scripting (XSS). | 6.1 |