• Skip to primary navigation
  • Skip to main content
CVE Vulnerability

CVE Vulnerability

  • CVE’s
  • Products
  • Vendors

CWE-352

CVE-2020-8976

February 26, 2023 by

The integrated server of the ZGR TPS200 NG on its 2.00 firmware version and 1.01 hardware version, allows a remote attacker to perform actions with the permissions of a victim user. For this to happen, the victim user has to have an active session and triggers the malicious request.

CVE-2020-8985

February 26, 2023 by

ZendTo prior to 5.22-2 Beta allowed reflected XSS and CSRF via the unlock.tpl unlock user functionality.

CVE-2020-9018

February 26, 2023 by

LiteCart through 2.2.1 allows admin/?app=users&doc=edit_user CSRF to add a user.

CVE-2020-8829

February 26, 2023 by

CSRF on Intelbras CIP 92200 devices allows an attacker to access the panel and perform scraping or other analysis.

CVE-2020-8830

February 26, 2023 by

CSRF in login.asp on Ruckus devices allows an attacker to access the panel, and use SSRF to perform scraping or other analysis via the SUBCA-1 field on the Wireless Admin screen.

CVE-2020-8615

February 26, 2023 by

A CSRF vulnerability in the Tutor LMS plugin before 1.5.3 for WordPress can result in an attacker approving themselves as an instructor and performing other malicious actions (such as blocking legitimate instructors).

  • « Go to Previous Page
  • Go to page 1
  • Interim pages omitted …
  • Go to page 103
  • Go to page 104
  • Go to page 105
  • Go to page 106
  • Go to page 107
  • Interim pages omitted …
  • Go to page 424
  • Go to Next Page »

Copyright CVE Vulnerabilities 2023
Data Sources:

  • NIST
  • MITRE
  • CVE Search
  • Open CVE