Vulnerabilities > Cross-Site Request Forgery (CSRF)
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-11-22 | CVE-2023-6008 | Cross-Site Request Forgery (CSRF) vulnerability in Userproplugin Userpro The UserPro plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 5.1.1. | 4.3 |
| 2023-11-22 | CVE-2023-27458 | Cross-Site Request Forgery (CSRF) vulnerability in Wpstream Cross-Site Request Forgery (CSRF) vulnerability in wpstream WpStream plugin <= 4.4.10 versions. | 8.8 |
| 2023-11-22 | CVE-2023-2447 | Cross-Site Request Forgery (CSRF) vulnerability in Userproplugin Userpro The UserPro plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 5.1.1. | 6.1 |
| 2023-11-21 | CVE-2023-5776 | Cross-Site Request Forgery (CSRF) vulnerability in Wpexpertplugins Post Meta Data Manager The Post Meta Data Manager plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.2.1. | 8.8 |
| 2023-11-20 | CVE-2023-38885 | Cross-Site Request Forgery (CSRF) vulnerability in Os4Ed Opensis 9.0 OpenSIS Classic Community Edition version 9.0 lacks cross-site request forgery (CSRF) protection throughout the whole app. | 8.8 |
| 2023-11-20 | CVE-2023-4824 | Cross-Site Request Forgery (CSRF) vulnerability in Bdaia Woohoo Newspaper Magazine Theme The WooHoo Newspaper Magazine theme does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack | 8.8 |
| 2023-11-20 | CVE-2023-6196 | Cross-Site Request Forgery (CSRF) vulnerability in Myaudiomerchant Audio Merchant 5.0.4 The Audio Merchant plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 5.0.4. | 8.8 |
| 2023-11-20 | CVE-2023-6197 | Cross-Site Request Forgery (CSRF) vulnerability in Myaudiomerchant Audio Merchant 5.0.4 The Audio Merchant plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 5.0.4. | 5.4 |
| 2023-11-18 | CVE-2023-31089 | Cross-Site Request Forgery (CSRF) vulnerability in Webternsolutions Video XML Sitemap Generator Cross-Site Request Forgery (CSRF) vulnerability in Tradebooster Video XML Sitemap Generator.This issue affects Video XML Sitemap Generator: from n/a through 1.0.0. | 8.8 |
| 2023-11-18 | CVE-2023-47655 | Cross-Site Request Forgery (CSRF) vulnerability in Wpgov Anac XML Bandi DI Gara Cross-Site Request Forgery (CSRF) vulnerability in Marco Milesi ANAC XML Bandi di Gara.This issue affects ANAC XML Bandi di Gara: from n/a through 7.5. | 8.8 |