Vulnerabilities > Cross-Site Request Forgery (CSRF)

DATE CVE VULNERABILITY TITLE RISK
2023-11-30 CVE-2023-48744 Cross-Site Request Forgery (CSRF) vulnerability in Offshorewebmaster Availability Calendar
Cross-Site Request Forgery (CSRF) vulnerability in Offshore Web Master Availability Calendar allows Cross Site Request Forgery.This issue affects Availability Calendar: from n/a through 1.2.6.
network
low complexity
offshorewebmaster CWE-352
8.8
8.8
2023-11-30 CVE-2023-6137 Cross-Site Request Forgery (CSRF) vulnerability in Wpfrontier Frontier Post 6.1
Cross-Site Request Forgery (CSRF) vulnerability in finnj Frontier Post allows Cross Site Request Forgery.This issue affects Frontier Post: from n/a through 6.1.
network
low complexity
wpfrontier CWE-352
8.8
8.8
2023-11-30 CVE-2023-49076 Cross-Site Request Forgery (CSRF) vulnerability in Pimcore
Customer-data-framework allows management of customer data within Pimcore.
network
low complexity
pimcore CWE-352
6.5
6.5
2023-11-30 CVE-2023-5772 Cross-Site Request Forgery (CSRF) vulnerability in Bowo Debug LOG Manager
The Debug Log Manager plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.2.1.
network
low complexity
bowo CWE-352
4.3
4.3
2023-11-29 CVE-2023-49655 Cross-Site Request Forgery (CSRF) vulnerability in Jenkins Matlab 2.11.0
A cross-site request forgery (CSRF) vulnerability in Jenkins MATLAB Plugin 2.11.0 and earlier allows attackers to have Jenkins parse an XML file from the Jenkins controller file system.
network
low complexity
jenkins CWE-352
8.8
8.8
2023-11-29 CVE-2023-49673 Cross-Site Request Forgery (CSRF) vulnerability in Jenkins products
A cross-site request forgery (CSRF) vulnerability in Jenkins NeuVector Vulnerability Scanner Plugin 1.22 and earlier allows attackers to connect to an attacker-specified hostname and port using attacker-specified username and password.
network
low complexity
jenkins CWE-352
8.8
8.8
2023-11-24 CVE-2023-6251 Cross-Site Request Forgery (CSRF) vulnerability in Checkmk 2.0.0/2.1.0/2.2.0
Cross-site Request Forgery (CSRF) in Checkmk < 2.2.0p15, < 2.1.0p37, <= 2.0.0p39 allow an authenticated attacker to delete user-messages for individual users.
network
low complexity
checkmk CWE-352
3.5
3.5
2023-11-23 CVE-2023-41792 Cross-Site Request Forgery (CSRF) vulnerability in Artica Pandora FMS
Cross-Site Request Forgery (CSRF) vulnerability in Pandora FMS on all allows Cross-Site Scripting (XSS).
network
low complexity
artica CWE-352
6.1
6.1
2023-11-22 CVE-2023-47824 Cross-Site Request Forgery (CSRF) vulnerability in Wpwax Legal Pages
Cross-Site Request Forgery (CSRF) vulnerability in wpWax Legal Pages – Privacy Policy, Terms & Conditions, GDPR, CCPA, and Cookie Notice Generator plugin <= 1.3.8 versions.
network
low complexity
wpwax CWE-352
8.8
8.8
2023-11-22 CVE-2023-47825 Cross-Site Request Forgery (CSRF) vulnerability in Wpvnteam WP Extra
Cross-Site Request Forgery (CSRF) vulnerability in TienCOP WP EXtra plugin <= 6.4 versions.
network
low complexity
wpvnteam CWE-352
8.8
8.8