Vulnerabilities > Cross-Site Request Forgery (CSRF)
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-02-28 | CVE-2022-43459 | Cross-Site Request Forgery (CSRF) vulnerability in Captainform Cross-Site Request Forgery (CSRF) vulnerability in Forms by CaptainForm – Form Builder for WordPress plugin <= 2.5.3 versions. | 8.8 |
| 2023-02-28 | CVE-2023-23992 | Cross-Site Request Forgery (CSRF) vulnerability in Automatorwp 1.7.6/2.5.0 Cross-Site Request Forgery (CSRF) vulnerability in AutomatorWP plugin <= 2.5.0 leads to object delete. | 4.3 |
| 2023-02-28 | CVE-2023-24419 | Cross-Site Request Forgery (CSRF) vulnerability in Strategy11 Formidable Form Builder Cross-Site Request Forgery (CSRF) vulnerability in Strategy11 Form Builder Team Formidable Forms plugin <= 5.5.6 versions. | 8.8 |
| 2023-02-24 | CVE-2021-34167 | Cross-Site Request Forgery (CSRF) vulnerability in Taogogo Taocms 3.0.2 Cross Site Request Forgery (CSRF) vulnerability in taoCMS 3.0.2 allows remote attackers to gain escalated privileges via taocms/admin/admin.php. | 8.8 |
| 2023-02-24 | CVE-2023-1029 | Cross-Site Request Forgery (CSRF) vulnerability in Joomunited WP Meta SEO The WP Meta SEO plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 4.5.3. | 4.3 |
| 2023-02-24 | CVE-2022-1607 | Cross-Site Request Forgery (CSRF) vulnerability in ABB Infinity DC Power Plant and Ne843 S Cross-Site Request Forgery (CSRF) vulnerability in ABB Pulsar Plus System Controller NE843_S, ABB Infinity DC Power Plant allows Cross Site Request Forgery.This issue affects Pulsar Plus System Controller NE843_S : comcode 150042936; Infinity DC Power Plant: H5692448 G104 G842 G224L G630-4 G451C(2) G461(2) – comcode 150047415. | 8.8 |
| 2023-02-23 | CVE-2023-20011 | Cross-Site Request Forgery (CSRF) vulnerability in Cisco products A vulnerability in the web-based management interface of Cisco Application Policy Infrastructure Controller (APIC) and Cisco Cloud Network Controller, formerly Cisco Cloud APIC, could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack on an affected system. | 8.8 |
| 2023-02-23 | CVE-2023-24415 | Cross-Site Request Forgery (CSRF) vulnerability in Quantumcloud Chatbot Cross-Site Request Forgery (CSRF) vulnerability in QuantumCloud AI ChatBot plugin <= 4.2.8 versions. | 8.8 |
| 2023-02-23 | CVE-2023-23659 | Cross-Site Request Forgery (CSRF) vulnerability in Mainwp Motomo Cross-Site Request Forgery (CSRF) vulnerability in MainWP Matomo Extension <= 4.0.4 versions. | 8.8 |
| 2023-02-23 | CVE-2023-24384 | Cross-Site Request Forgery (CSRF) vulnerability in Wpdevart Organization Chart Cross-Site Request Forgery (CSRF) vulnerability in WpDevArt Organization chart <= 1.4.4 versions. | 8.8 |