Vulnerabilities > Cross-Site Request Forgery (CSRF)
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-09-27 | CVE-2023-44161 | Cross-Site Request Forgery (CSRF) vulnerability in Acronis Cyber Protect 15 Sensitive information manipulation due to cross-site request forgery. | 6.5 |
| 2023-09-27 | CVE-2023-35793 | Cross-Site Request Forgery (CSRF) vulnerability in Cassianetworks Access Controller 2.1.1.2303271039 An issue was discovered in Cassia Access Controller 2.1.1.2303271039. | 8.8 |
| 2023-09-25 | CVE-2023-43278 | Cross-Site Request Forgery (CSRF) vulnerability in Seacms A Cross-Site Request Forgery (CSRF) in admin_manager.php of Seacms up to v12.8 allows attackers to arbitrarily add an admin account. | 8.8 |
| 2023-09-20 | CVE-2023-42321 | Cross-Site Request Forgery (CSRF) vulnerability in Icmsdev Icms 7.0.16 Cross Site Request Forgery (CSRF) vulnerability in icmsdev iCMSv.7.0.16 allows a remote attacker to execute arbitrary code via the user.admincp.php, members.admincp.php, and group.admincp.php files. | 8.8 |
| 2023-09-20 | CVE-2023-43500 | Cross-Site Request Forgery (CSRF) vulnerability in Jenkins Build Failure Analyzer A cross-site request forgery (CSRF) vulnerability in Jenkins Build Failure Analyzer Plugin 2.4.1 and earlier allows attackers to connect to an attacker-specified hostname and port using attacker-specified username and password. | 8.8 |
| 2023-09-20 | CVE-2023-43502 | Cross-Site Request Forgery (CSRF) vulnerability in Jenkins Build Failure Analyzer A cross-site request forgery (CSRF) vulnerability in Jenkins Build Failure Analyzer Plugin 2.4.1 and earlier allows attackers to delete Failure Causes. | 4.3 |
| 2023-09-20 | CVE-2023-2508 | Cross-Site Request Forgery (CSRF) vulnerability in Papercut Mobility Print Server 1.0.3512 The `PaperCutNG Mobility Print` version 1.0.3512 application allows an unauthenticated attacker to perform a CSRF attack on an instance administrator to configure the clients host (in the "configure printer discovery" section). | 6.5 |
| 2023-09-19 | CVE-2022-47559 | Cross-Site Request Forgery (CSRF) vulnerability in Ormazabal Ekorccp Firmware and Ekorrci Firmware Lack of device control over web requests in ekorCCP and ekorRCI, allowing an attacker to create customised requests to execute malicious actions when a user is logged in, affecting availability, privacy and integrity. | 8.8 |
| 2023-09-18 | CVE-2023-5036 | Cross-Site Request Forgery (CSRF) vulnerability in Usememos Memos Cross-Site Request Forgery (CSRF) in GitHub repository usememos/memos prior to 0.15.1. | 8.8 |
| 2023-09-15 | CVE-2023-42270 | Cross-Site Request Forgery (CSRF) vulnerability in Grocy Project Grocy Grocy <= 4.0.2 is vulnerable to Cross Site Request Forgery (CSRF). | 8.8 |