Vulnerabilities > Cross-Site Request Forgery (CSRF)
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-03-01 | CVE-2022-45068 | Cross-Site Request Forgery (CSRF) vulnerability in Mercadopago Mercado Pago Payments for Woocommerce Cross-Site Request Forgery (CSRF) vulnerability in Mercado Pago Mercado Pago payments for WooCommerce plugin <= 6.3.1. | 8.8 |
| 2023-03-01 | CVE-2022-45804 | Cross-Site Request Forgery (CSRF) vulnerability in Robogallery Robo Gallery Cross-Site Request Forgery (CSRF) vulnerability in RoboSoft Photo Gallery, Images, Slider in Rbs Image Gallery plugin <= 3.2.9 leading to galleries hierarchy change, included plugin deactivate & activate. | 5.4 |
| 2023-03-01 | CVE-2022-46797 | Cross-Site Request Forgery (CSRF) vulnerability in Conversios Cross-Site Request Forgery (CSRF) vulnerability in Conversios All-in-one Google Analytics, Pixels and Product Feed Manager for WooCommerce plugin <= 5.2.3 leads to plugin settings change. | 4.3 |
| 2023-03-01 | CVE-2023-23973 | Cross-Site Request Forgery (CSRF) vulnerability in A3Rev Contact US Page - Contact People Cross-Site Request Forgery (CSRF) vulnerability in a3rev Software Contact Us Page – Contact People plugin <= 3.7.0. | 6.5 |
| 2023-03-01 | CVE-2023-23974 | Cross-Site Request Forgery (CSRF) vulnerability in Fullworksplugins Quick Event Manager Cross-Site Request Forgery (CSRF) vulnerability in Fullworks Quick Event Manager plugin <= 9.7.4 affecting all registration actions (delete, delete all, edit, update). | 5.4 |
| 2023-03-01 | CVE-2023-23984 | Cross-Site Request Forgery (CSRF) vulnerability in Wow-Company Bubble Menu Cross-Site Request Forgery (CSRF) vulnerability in Wow-Company Bubble Menu – circle floating menu plugin <= 3.0.1 leading to form deletion. | 5.4 |
| 2023-02-28 | CVE-2023-27295 | Cross-Site Request Forgery (CSRF) vulnerability in Opencats 0.9.6 Cross-site request forgery is facilitated by OpenCATS failure to require CSRF tokens in POST requests. | 5.4 |
| 2023-02-28 | CVE-2022-47179 | Cross-Site Request Forgery (CSRF) vulnerability in Ujsoftware OWM Weather Cross-Site Request Forgery (CSRF) vulnerability in Uwe Jacobs OWM Weather plugin <= 5.6.11 leads to post duplication as a draft. | 4.3 |
| 2023-02-28 | CVE-2022-47612 | Cross-Site Request Forgery (CSRF) vulnerability in Xnau Participants Database Cross-Site Request Forgery (CSRF) vulnerability in Roland Barker, xnau webdesign Participants Database plugin <= 2.4.5 leads to list column update. | 4.3 |
| 2023-02-28 | CVE-2023-23865 | Cross-Site Request Forgery (CSRF) vulnerability in Checkoutplugins Stripe Payments for Woocommerce Cross-Site Request Forgery (CSRF) vulnerability in Checkout Plugins Stripe Payments For WooCommerce plugin <= 1.4.10 leads to settings change. | 4.3 |