Vulnerabilities > Cross-Site Request Forgery (CSRF)

DATE CVE VULNERABILITY TITLE RISK
2023-02-24 CVE-2023-1029 Cross-Site Request Forgery (CSRF) vulnerability in Joomunited WP Meta SEO
The WP Meta SEO plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 4.5.3.
network
low complexity
joomunited CWE-352
4.3
4.3
2023-02-24 CVE-2022-1607 Cross-Site Request Forgery (CSRF) vulnerability in ABB Infinity DC Power Plant and Ne843 S
Cross-Site Request Forgery (CSRF) vulnerability in ABB Pulsar Plus System Controller NE843_S, ABB Infinity DC Power Plant allows Cross Site Request Forgery.This issue affects Pulsar Plus System Controller NE843_S : comcode 150042936; Infinity DC Power Plant: H5692448 G104 G842 G224L G630-4 G451C(2) G461(2) – comcode 150047415.
network
low complexity
abb CWE-352
8.8
8.8
2023-02-23 CVE-2023-20011 Cross-Site Request Forgery (CSRF) vulnerability in Cisco products
A vulnerability in the web-based management interface of Cisco Application Policy Infrastructure Controller (APIC) and Cisco Cloud Network Controller, formerly Cisco Cloud APIC, could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack on an affected system.
network
low complexity
cisco CWE-352
8.8
8.8
2023-02-23 CVE-2023-24415 Cross-Site Request Forgery (CSRF) vulnerability in Quantumcloud Chatbot
Cross-Site Request Forgery (CSRF) vulnerability in QuantumCloud AI ChatBot plugin <= 4.2.8 versions.
network
low complexity
quantumcloud CWE-352
8.8
8.8
2023-02-23 CVE-2023-23659 Cross-Site Request Forgery (CSRF) vulnerability in Mainwp Motomo
Cross-Site Request Forgery (CSRF) vulnerability in MainWP Matomo Extension <= 4.0.4 versions.
network
low complexity
mainwp CWE-352
8.8
8.8
2023-02-23 CVE-2023-24384 Cross-Site Request Forgery (CSRF) vulnerability in Wpdevart Organization Chart
Cross-Site Request Forgery (CSRF) vulnerability in WpDevArt Organization chart <= 1.4.4 versions.
network
low complexity
wpdevart CWE-352
8.8
8.8
2023-02-20 CVE-2022-48320 Cross-Site Request Forgery (CSRF) vulnerability in Checkmk 2.0.0/2.1.0
Cross-site Request Forgery (CSRF) in Tribe29's Checkmk <= 2.1.0p17, Checkmk <= 2.0.0p31, and all versions of Checkmk 1.6.0 (EOL) allow an attacker to add new visual elements to multiple pages.
network
low complexity
checkmk CWE-352
4.3
4.3
2023-02-20 CVE-2023-25569 Cross-Site Request Forgery (CSRF) vulnerability in Apolloconfig Apollo
Apollo is a configuration management system.
network
low complexity
apolloconfig CWE-352
5.7
5.7
2023-02-17 CVE-2023-23899 Cross-Site Request Forgery (CSRF) vulnerability in Hasthemes Extensions for CF7
Cross-Site Request Forgery (CSRF) vulnerability in HasThemes Extensions For CF7 plugin <= 2.0.8 versions leads to arbitrary plugin activation.
network
low complexity
hasthemes CWE-352
4.3
4.3
2023-02-17 CVE-2023-24388 Cross-Site Request Forgery (CSRF) vulnerability in Wpdevart Booking Calendar
Cross-Site Request Forgery (CSRF) vulnerability in WpDevArt Booking calendar, Appointment Booking System plugin <= 3.2.3 versions affects plugin forms actions (create, duplicate, edit, delete).
network
low complexity
wpdevart CWE-352
5.4
5.4