Vulnerabilities > Cross-Site Request Forgery (CSRF)
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-07-20 | CVE-2023-37650 | Cross-Site Request Forgery (CSRF) vulnerability in Agentejo Cockpit A Cross-Site Request Forgery (CSRF) in the Admin portal of Cockpit CMS v2.5.2 allows attackers to execute arbitrary Administrator commands. | 8.8 |
| 2023-07-18 | CVE-2023-28023 | Cross-Site Request Forgery (CSRF) vulnerability in Hcltech Bigfix Webui 14/20/44 A cross site request forgery vulnerability in the BigFix WebUI Software Distribution interface site version 44 and before allows an NMO attacker to access files on server side systems (server machine and all the ones in its network). | 6.5 |
| 2023-07-18 | CVE-2022-45828 | Cross-Site Request Forgery (CSRF) vulnerability in Nootheme NOO Timetable 2.1.3 Cross-Site Request Forgery (CSRF) vulnerability in NooTheme Noo Timetable plugin <= 2.1.3 versions. | 8.8 |
| 2023-07-17 | CVE-2022-36424 | Cross-Site Request Forgery (CSRF) vulnerability in Easy-Appointments Easy Appointments Cross-Site Request Forgery (CSRF) vulnerability in Nikola Loncar Easy Appointments plugin <= 3.11.9 versions. | 8.8 |
| 2023-07-17 | CVE-2022-38062 | Cross-Site Request Forgery (CSRF) vulnerability in Metagauss Download Theme Cross-Site Request Forgery (CSRF) vulnerability in Metagauss Download Theme plugin <= 1.0.9 versions. | 8.8 |
| 2023-07-17 | CVE-2023-35089 | Cross-Site Request Forgery (CSRF) vulnerability in Really-Simple-Plugins Recipe Maker for Your Food Blog From ZIP Recipes Cross-Site Request Forgery (CSRF) vulnerability in Really Simple Plugins Recipe Maker For Your Food Blog from Zip Recipes plugin <= 8.0.7 versions. | 8.8 |
| 2023-07-15 | CVE-2023-38349 | Cross-Site Request Forgery (CSRF) vulnerability in Pnp4Nagios 0.6.26 PNP4Nagios through 81ebfc5 lacks CSRF protection in the AJAX controller. | 8.8 |
| 2023-07-14 | CVE-2023-32761 | Cross-Site Request Forgery (CSRF) vulnerability in Archerirm Archer Cross Site Request Forgery (CSRF) vulnerability in Archer Platform before v.6.13 and fixed in v.6.12.0.6 and v.6.13.0 allows an authenticated attacker to execute arbitrary code via a crafted request. | 8.0 |
| 2023-07-13 | CVE-2023-37598 | Cross-Site Request Forgery (CSRF) vulnerability in Issabel PBX 4.0.06 A Cross Site Request Forgery (CSRF) vulnerability in issabel-pbx v.4.0.0-6 allows a remote attacker to cause a denial of service via the delete new virtual fax function. | 4.5 |
| 2023-07-13 | CVE-2023-37562 | Cross-Site Request Forgery (CSRF) vulnerability in Elecom Wtc-C1167Gc-B Firmware and Wtc-C1167Gc-W Firmware Cross-site request forgery (CSRF) vulnerability in exists in WTC-C1167GC-B v1.17 and earlier, and WTC-C1167GC-W v1.17 and earlier. | 8.8 |