Vulnerabilities > Cross-Site Request Forgery (CSRF)
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-02-14 | CVE-2023-24377 | Cross-Site Request Forgery (CSRF) vulnerability in Lightspeedhq Ecwid Ecommerce Shopping Cart Cross-Site Request Forgery (CSRF) vulnerability in Ecwid Ecommerce Ecwid Ecommerce Shopping Cart plugin <= 6.11.3 versions. | 8.8 |
| 2023-02-14 | CVE-2023-24382 | Cross-Site Request Forgery (CSRF) vulnerability in Material Design Icons for Page Builders Project Material Design Icons for Page Builders Cross-Site Request Forgery (CSRF) vulnerability in Photon WP Material Design Icons for Page Builders plugin <= 1.4.2 versions. | 8.8 |
| 2023-02-14 | CVE-2023-25065 | Cross-Site Request Forgery (CSRF) vulnerability in Shapedplugin WP Tabs Cross-Site Request Forgery (CSRF) vulnerability in ShapedPlugin WP Tabs – Responsive Tabs Plugin for WordPress plugin <= 2.1.14 versions. | 8.8 |
| 2023-02-14 | CVE-2022-43469 | Cross-Site Request Forgery (CSRF) vulnerability in Orchestrated Corona Virus (Covid-19) Banner & Live Data Cross-Site Request Forgery (CSRF) vulnerability in Orchestrated Corona Virus (COVID-19) Banner & Live Data plugin <= 1.7.0.6 versions. | 8.8 |
| 2023-02-14 | CVE-2023-25066 | Cross-Site Request Forgery (CSRF) vulnerability in Foliovision FV Flowplayer Video Player Cross-Site Request Forgery (CSRF) vulnerability in FolioVision FV Flowplayer Video Player plugin <= 7.5.30.7212 versions. | 8.8 |
| 2023-02-14 | CVE-2023-22375 | Cross-Site Request Forgery (CSRF) vulnerability in Planex Cs-Wmv02G Firmware Cross-site request forgery (CSRF) vulnerability in Wired/Wireless LAN Pan/Tilt Network Camera CS-WMV02G all versions allows a remote unauthenticated attacker to hijack the authentication and conduct arbitrary operations by having a logged-in user to view a malicious page. | 8.8 |
| 2023-02-13 | CVE-2022-4138 | Cross-Site Request Forgery (CSRF) vulnerability in Gitlab A Cross Site Request Forgery issue has been discovered in GitLab CE/EE affecting all versions before 15.6.7, all versions starting from 15.7 before 15.7.6, and all versions starting from 15.8 before 15.8.1. | 8.1 |
| 2023-02-13 | CVE-2022-41134 | Cross-Site Request Forgery (CSRF) vulnerability in Optinly Cross-Site Request Forgery (CSRF) in OptinlyHQ Optinly – Exit Intent, Newsletter Popups, Gamification & Opt-in Forms plugin <= 1.0.15 versions. | 8.8 |
| 2023-02-11 | CVE-2022-34448 | Cross-Site Request Forgery (CSRF) vulnerability in Dell Powerpath Management Appliance PowerPath Management Appliance with versions 3.3 & 3.2*, 3.1 & 3.0* contains a Cross-site Request Forgery vulnerability. | 8.8 |
| 2023-02-10 | CVE-2022-3568 | Cross-Site Request Forgery (CSRF) vulnerability in Orangelab Imagemagick Engine The ImageMagick Engine plugin for WordPress is vulnerable to deserialization of untrusted input via the 'cli_path' parameter in versions up to, and including 1.7.5. | 8.8 |