Vulnerabilities > Cross-Site Request Forgery (CSRF)
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-06-27 | CVE-2020-18416 | Cross-Site Request Forgery (CSRF) vulnerability in Jyuu Jymusic 2.0.0 An cross site request forgery (CSRF) vulnerability discovered in Jymusic v2.0.0.,that allows attackers to execute arbitrary code via /admin.php?s=/addons/config.html&id=6 to modify payment information. | 6.8 |
| 2023-06-27 | CVE-2020-18418 | Cross-Site Request Forgery (CSRF) vulnerability in Feifeicms 4.1.190209 A Cross site request forgery (CSRF) vulnerability was discovered in FeiFeiCMS v4.1.190209, which allows attackers to create administrator accounts via /index.php?s=Admin-Admin-Insert. | 8.8 |
| 2023-06-27 | CVE-2023-34839 | Cross-Site Request Forgery (CSRF) vulnerability in Issabel PBX 4.0.06 A Cross Site Request Forgery (CSRF) vulnerability in Issabel issabel-pbx v.4.0.0-6 allows a remote attacker to gain privileges via a Custom CSRF exploit to create new user function in the application. | 6.8 |
| 2023-06-24 | CVE-2023-1722 | Cross-Site Request Forgery (CSRF) vulnerability in Yoga Class Registration System Project Yoga Class Registration System 1.0 Yoga Class Registration System version 1.0 allows an administrator to execute commands on the server. | 8.8 |
| 2023-06-22 | CVE-2023-32960 | Cross-Site Request Forgery (CSRF) vulnerability in Updraftplus Cross-Site Request Forgery (CSRF) vulnerability in UpdraftPlus.Com, DavidAnderson UpdraftPlus WordPress Backup Plugin <= 1.23.3 versions leads to sitewide Cross-Site Scripting (XSS). | 6.1 |
| 2023-06-22 | CVE-2023-34927 | Cross-Site Request Forgery (CSRF) vulnerability in Casbin Casdoor Casdoor v1.331.0 and below was discovered to contain a Cross-Site Request Forgery (CSRF) in the endpoint /api/set-password. | 6.5 |
| 2023-06-21 | CVE-2022-3372 | Cross-Site Request Forgery (CSRF) vulnerability in Riello-Ups Netman 204 Firmware 02.05 There is a CSRF vulnerability on Netman-204 version 02.05. | 8.8 |
| 2023-06-20 | CVE-2020-20502 | Cross-Site Request Forgery (CSRF) vulnerability in Yzmcms 2.0 Cross Site Request Forgery found in yzCMS v.2.0 allows a remote attacker to execute arbitrary code via the token check function. | 6.5 |
| 2023-06-20 | CVE-2020-20726 | Cross-Site Request Forgery (CSRF) vulnerability in Gilacms Gila CMS 1.11.4 Cross Site Request Forgery vulnerability in Gila GilaCMS v.1.11.4 allows a remote attacker to execute arbitrary code via the cm/update_rows/user parameter. | 8.8 |
| 2023-06-20 | CVE-2020-21252 | Cross-Site Request Forgery (CSRF) vulnerability in Hongcms Project Hongcms 3.0.0 Cross Site Request Forgery vulnerability in Neeke HongCMS 3.0.0 allows a remote attacker to execute arbitrary code and escalate privileges via the updateusers parameter. | 8.8 |