VUMETRIC
CYBER PORTAL
Dashboard
Security News
Latest Vulnerabilities
Browse Vulnerabilities
by Vendors
by Products
by Categories
Weekly Reports
Vulnerabilities
> Cross-Site Request Forgery (CSRF)
Exclude new CVEs:
DATE
CVE
VULNERABILITY TITLE
RISK
2024-12-17
CVE-2024-12219
The Stop Registration Spam plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.23.
network
low complexity
CWE-352
6.1
6.1
2024-12-17
CVE-2024-12220
The SMS for WooCommerce plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.8.1.
network
low complexity
CWE-352
6.1
6.1
2024-12-16
CVE-2024-54355
Cross-Site Request Forgery (CSRF) vulnerability in Wpmailster WP Mailster
Cross-Site Request Forgery (CSRF) vulnerability in brandtoss WP Mailster allows Cross Site Request Forgery.This issue affects WP Mailster: from n/a through 1.8.17.0.
network
low complexity
wpmailster
CWE-352
8.8
8.8
2024-12-14
CVE-2024-12555
The SIP Calculator plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.0.
network
low complexity
CWE-352
6.1
6.1
2024-12-13
CVE-2024-12414
The Themify Store Locator plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.1.9.
network
low complexity
CWE-352
4.3
4.3
2024-12-13
CVE-2024-12572
The Hello In All Languages plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.0.6.
network
low complexity
CWE-352
6.1
6.1
2024-12-12
CVE-2024-12526
Cross-Site Request Forgery (CSRF) vulnerability in Arena.Im
The Arena.IM – Live Blogging for real-time events plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 0.3.0.
network
low complexity
arena-im
CWE-352
4.3
4.3
2024-12-12
CVE-2024-11417
The dejure.org Vernetzungsfunktion plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.97.5.
network
low complexity
CWE-352
6.1
6.1
2024-12-12
CVE-2024-11419
The Password for WP plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.3.
network
low complexity
CWE-352
6.1
6.1
2024-12-12
CVE-2024-11689
The HQ Rental Software plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.5.29.
network
low complexity
CWE-352
8.8
8.8
«
Previous
1
2
...
7
8
9
(current)
10
11
...
341
342
»
Next