Vulnerabilities > Cross-Site Request Forgery (CSRF)
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-03-01 | CVE-2023-23984 | Cross-Site Request Forgery (CSRF) vulnerability in Wow-Company Bubble Menu Cross-Site Request Forgery (CSRF) vulnerability in Wow-Company Bubble Menu – circle floating menu plugin <= 3.0.1 leading to form deletion. | 5.4 |
| 2023-02-28 | CVE-2023-27295 | Cross-Site Request Forgery (CSRF) vulnerability in Opencats 0.9.6 Cross-site request forgery is facilitated by OpenCATS failure to require CSRF tokens in POST requests. | 5.4 |
| 2023-02-28 | CVE-2022-47179 | Cross-Site Request Forgery (CSRF) vulnerability in Ujsoftware OWM Weather Cross-Site Request Forgery (CSRF) vulnerability in Uwe Jacobs OWM Weather plugin <= 5.6.11 leads to post duplication as a draft. | 4.3 |
| 2023-02-28 | CVE-2022-47612 | Cross-Site Request Forgery (CSRF) vulnerability in Xnau Participants Database Cross-Site Request Forgery (CSRF) vulnerability in Roland Barker, xnau webdesign Participants Database plugin <= 2.4.5 leads to list column update. | 4.3 |
| 2023-02-28 | CVE-2023-23865 | Cross-Site Request Forgery (CSRF) vulnerability in Checkoutplugins Stripe Payments for Woocommerce Cross-Site Request Forgery (CSRF) vulnerability in Checkout Plugins Stripe Payments For WooCommerce plugin <= 1.4.10 leads to settings change. | 4.3 |
| 2023-02-28 | CVE-2023-23983 | Cross-Site Request Forgery (CSRF) vulnerability in Wpdevart Responsive Vertical Icon Menu Cross-Site Request Forgery (CSRF) vulnerability in wpdevart Responsive Vertical Icon Menu plugin <= 1.5.8 can lead to theme deletion. | 5.4 |
| 2023-02-28 | CVE-2022-43459 | Cross-Site Request Forgery (CSRF) vulnerability in Captainform Cross-Site Request Forgery (CSRF) vulnerability in Forms by CaptainForm – Form Builder for WordPress plugin <= 2.5.3 versions. | 8.8 |
| 2023-02-28 | CVE-2023-23992 | Cross-Site Request Forgery (CSRF) vulnerability in Automatorwp 1.7.6/2.5.0 Cross-Site Request Forgery (CSRF) vulnerability in AutomatorWP plugin <= 2.5.0 leads to object delete. | 4.3 |
| 2023-02-28 | CVE-2023-24419 | Cross-Site Request Forgery (CSRF) vulnerability in Strategy11 Formidable Form Builder Cross-Site Request Forgery (CSRF) vulnerability in Strategy11 Form Builder Team Formidable Forms plugin <= 5.5.6 versions. | 8.8 |
| 2023-02-24 | CVE-2021-34167 | Cross-Site Request Forgery (CSRF) vulnerability in Taogogo Taocms 3.0.2 Cross Site Request Forgery (CSRF) vulnerability in taoCMS 3.0.2 allows remote attackers to gain escalated privileges via taocms/admin/admin.php. | 8.8 |