Vulnerabilities > Cross-Site Request Forgery (CSRF)
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-02-14 | CVE-2022-43469 | Cross-Site Request Forgery (CSRF) vulnerability in Orchestrated Corona Virus (Covid-19) Banner & Live Data Cross-Site Request Forgery (CSRF) vulnerability in Orchestrated Corona Virus (COVID-19) Banner & Live Data plugin <= 1.7.0.6 versions. | 8.8 |
| 2023-02-14 | CVE-2023-25066 | Cross-Site Request Forgery (CSRF) vulnerability in Foliovision FV Flowplayer Video Player Cross-Site Request Forgery (CSRF) vulnerability in FolioVision FV Flowplayer Video Player plugin <= 7.5.30.7212 versions. | 8.8 |
| 2023-02-14 | CVE-2023-22375 | Cross-Site Request Forgery (CSRF) vulnerability in Planex Cs-Wmv02G Firmware Cross-site request forgery (CSRF) vulnerability in Wired/Wireless LAN Pan/Tilt Network Camera CS-WMV02G all versions allows a remote unauthenticated attacker to hijack the authentication and conduct arbitrary operations by having a logged-in user to view a malicious page. | 8.8 |
| 2023-02-13 | CVE-2022-4138 | Cross-Site Request Forgery (CSRF) vulnerability in Gitlab A Cross Site Request Forgery issue has been discovered in GitLab CE/EE affecting all versions before 15.6.7, all versions starting from 15.7 before 15.7.6, and all versions starting from 15.8 before 15.8.1. | 8.1 |
| 2023-02-13 | CVE-2022-41134 | Cross-Site Request Forgery (CSRF) vulnerability in Optinly Cross-Site Request Forgery (CSRF) in OptinlyHQ Optinly – Exit Intent, Newsletter Popups, Gamification & Opt-in Forms plugin <= 1.0.15 versions. | 8.8 |
| 2023-02-11 | CVE-2022-34448 | Cross-Site Request Forgery (CSRF) vulnerability in Dell Powerpath Management Appliance PowerPath Management Appliance with versions 3.3 & 3.2*, 3.1 & 3.0* contains a Cross-site Request Forgery vulnerability. | 8.8 |
| 2023-02-10 | CVE-2022-3568 | Cross-Site Request Forgery (CSRF) vulnerability in Orangelab Imagemagick Engine The ImageMagick Engine plugin for WordPress is vulnerable to deserialization of untrusted input via the 'cli_path' parameter in versions up to, and including 1.7.5. | 8.8 |
| 2023-02-03 | CVE-2021-36443 | Cross-Site Request Forgery (CSRF) vulnerability in Txjia Imcat 5.4 Cross Site Request Forgery vulnerability in imcat 5.4 allows remote attackers to escalate privilege via lack of token verification. | 8.8 |
| 2023-02-03 | CVE-2021-36444 | Cross-Site Request Forgery (CSRF) vulnerability in Txjia Imcat 5.4 Cross Site Request Forgery (CSRF) vulnerability in imcat 5.4 allows remote attackers to gain escalated privileges via flaws one time token generation on the add administrator page. | 8.8 |
| 2023-02-03 | CVE-2021-36569 | Cross-Site Request Forgery (CSRF) vulnerability in Thedaylightstudio Fuel CMS 1.4.13 Cross Site Request Forgery vulnerability in FUEL-CMS 1.4.13 allows remote attackers to run arbitrary code via post ID to /users/delete/2. | 8.8 |