Fallos del tipo CWE-352

5690 resultados

CVE-2022-41489HIGHWAYOS LQ_09 22.03.17V was discovered to contain a Cross-Site Request Forgery (CSRF) which allows attackers to send crafted requests to the sEPSS 0.4%CVE-2022-22811—A CWE-352: Cross-Site Request Forgery (CSRF) vulnerability exists that could induce users to perform unintended actions, leading to the overEPSS 0.4%CVE-2022-34020HIGHCross Site Request Forgery (CSRF) vulnerability in ResIOT ResIOT IOT Platform + LoRaWAN Network Server through 4.1.1000114 allows attackers EPSS 0.4%CVE-2022-45149MEDIUMA vulnerability was found in Moodle which exists due to insufficient validation of the HTTP request origin in course redirect URL. A user's EPSS 0.4%CVE-2021-24543—jQuery Reply to Comment <= 1.31 - CSRF to Stored Cross-Site ScriptingEPSS 0.4%CVE-2022-27847MEDIUMWordPress Yoo Slider plugin <= 2.0.0 - Cross-Site Request Forgery (CSRF) vulnerability leading to Template ImportEPSS 0.4%CVE-2021-3775MEDIUMCross-Site Request Forgery (CSRF) in star7th/showdocEPSS 0.4%CVE-2022-27846MEDIUMWordPress Yoo Slider plugin <= 2.0.0 - Cross-Site Request Forgery (CSRF) vulnerability leading to Slider Creation / ModificationEPSS 0.4%CVE-2020-36738MEDIUMCool Timeline (Horizontal & Vertical Timeline) <= 2.0.2 - Cross-Site Request Forgery BypassEPSS 0.4%CVE-2023-2736HIGHGroundhogg <= 2.7.9.8 - Cross-Site Request Forgery to Privilege EscalationEPSS 0.4%CVE-2021-4393MEDIUMeCommerce Product Catalog Plugin for WordPress <= 3.0.17 - Cross-Site Request Forgery BypassEPSS 0.4%CVE-2023-2746CRITICALRockwell Automation Enhanced HIM Vulnerable to Cross-Site Request Forgery AttackEPSS 0.4%CVE-2023-6474MEDIUMPHPGurukul Nipah Virus Testing Management System manage-phlebotomist.php cross-site request forgeryEPSS 0.4%CVE-2021-4391MEDIUMUltimate Gift Cards for WooCommerce <= 2.1.1 - Cross-Site Request Forgery BypassEPSS 0.4%CVE-2021-3776MEDIUMCross-Site Request Forgery (CSRF) in star7th/showdocEPSS 0.4%CVE-2021-4392MEDIUMeCommerce Product Catalog Plugin for WordPress <= 2.9.43 - Cross-Site Request Forgery BypassEPSS 0.4%CVE-2021-24683—Weather Effect < 1.3.4 - CSRF to Stored Cross-Site ScriptingEPSS 0.4%CVE-2023-6653MEDIUMPHPGurukul Teacher Subject Allocation Management System Create a new Subject subject.php cross-site request forgeryEPSS 0.4%CVE-2020-36739MEDIUMFeed Them Social – Page, Post, Video, and Photo Galleries <= 2.8.6 - Cross-Site Request Forgery BypassEPSS 0.4%CVE-2022-25599MEDIUMWordPress Spiffy Calendar plugin <= 4.9.0 - Event deletion via Cross-Site Request Forgery (CSRF) vulnerabilityEPSS 0.4%

← anteriorpágina 38 / 285siguiente →