Vulnerabilities > Cross-Site Request Forgery (CSRF)

DATE	CVE	VULNERABILITY TITLE	RISK
2023-07-10	CVE-2023-23804	Cross-Site Request Forgery (CSRF) vulnerability in Hasthemes HT Feed Cross-Site Request Forgery (CSRF) vulnerability in HasThemes HT Feed plugin <= 1.2.7 versions. network low complexity hasthemes CWE-352	8.8
2023-07-07	CVE-2023-20180	Cross-Site Request Forgery (CSRF) vulnerability in Cisco Webex Meetings A vulnerability in the web interface of Cisco Webex Meetings could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack on an affected system. This vulnerability is due to insufficient CSRF protections for the web interface on an affected system. network low complexity cisco CWE-352	4.3
2023-07-07	CVE-2023-36256	Cross-Site Request Forgery (CSRF) vulnerability in Online Examination System Project Online Examination System 1.0 The Online Examination System Project 1.0 version is vulnerable to Cross-Site Request Forgery (CSRF) attacks. network low complexity online-examination-system-project CWE-352	6.5
2023-07-07	CVE-2023-25201	Cross-Site Request Forgery (CSRF) vulnerability in Multitech products Cross Site Request Forgery (CSRF) vulnerability in MultiTech Conduit AP MTCAP2-L4E1 MTCAP2-L4E1-868-042A v.6.0.0 allows a remote attacker to execute arbitrary code via a crafted script upload. network low complexity multitech CWE-352	8.8
2023-07-06	CVE-2023-37131	Cross-Site Request Forgery (CSRF) vulnerability in Yzncms 1.1.0 A Cross-Site Request Forgery (CSRF) in the component /public/admin/profile/update.html of YznCMS v1.1.0 allows attackers to arbitrarily change the Administrator password via a crafted POST request. network low complexity yzncms CWE-352	6.5
2023-07-04	CVE-2023-31999	Cross-Site Request Forgery (CSRF) vulnerability in Fastify Oauth2 All versions of @fastify/oauth2 used a statically generated state parameter at startup time and were used across all requests for all users. network low complexity fastify CWE-352	8.8
2023-07-03	CVE-2023-36162	Cross-Site Request Forgery (CSRF) vulnerability in Zzcms 2023 Cross Site Request Forgery vulnerability in ZZCMS v.2023 and earlier allows a remote attacker to gain privileges via the add function in adminlist.php. network low complexity zzcms CWE-352	8.8
2023-07-01	CVE-2021-4398	Cross-Site Request Forgery (CSRF) vulnerability in Amministrazione Trasparente Project Amministrazione Trasparente The Amministrazione Trasparente plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 7.1. network low complexity amministrazione-trasparente-project CWE-352	4.3
2023-07-01	CVE-2020-36740	Cross-Site Request Forgery (CSRF) vulnerability in Radio Buttons for Taxonomies Project Radio Buttons for Taxonomies The Radio Buttons for Taxonomies plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 2.0.5. network low complexity radio-buttons-for-taxonomies-project CWE-352	8.8
2023-06-27	CVE-2020-18409	Cross-Site Request Forgery (CSRF) vulnerability in Catfishcms Project Catfishcms 4.8.63 Cross Site Request Forgery (CSRF) vulnerability was discovered in CatfishCMS 4.8.63 that would allow attackers to obtain administrator permissions via /index.php/admin/index/modifymanage.html. network low complexity catfishcms-project CWE-352	6.8