Vulnerabilities > Osisoft > PI WEB API > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-08-15 | CVE-2019-13516 | Cross-Site Request Forgery (CSRF) vulnerability in Osisoft PI web API In OSIsoft PI Web API and prior, the affected product is vulnerable to a direct attack due to a cross-site request forgery protection setting that has not taken effect. | 8.8 |
| 2018-03-14 | CVE-2018-7500 | Unspecified vulnerability in Osisoft PI Vision and PI web API A Permissions, Privileges, and Access Controls issue was discovered in OSIsoft PI Web API versions 2017 R2 and prior. | 7.5 |