CWE-352

CVE-2019-7270

February 26, 2023 by

Linear eMerge 50P/5000P devices allow Cross-Site Request Forgery (CSRF).

CVE-2019-7273

February 26, 2023 by

Optergy Proton/Enterprise devices allow Cross-Site Request Forgery (CSRF).

Prima Systems FlexAir, Versions 2.3.38 and prior. An unauthenticated user can send unverified HTTP requests, which may allow the attacker to perform certain actions with administrative privileges if a logged-in user visits a malicious website.

CVE-2019-6967

February 26, 2023 by

AirTies Air5341 1.0.0.12 devices allow cgi-bin/login CSRF.

CVE-2019-6779

February 26, 2023 by

Cscms 4.1.8 allows admin.php/links/save CSRF to add, modify, or delete friend links.

CVE-2019-6710

February 26, 2023 by

Zyxel NBG-418N v2 v1.00(AAXM.4)C0 devices allow login.cgi CSRF.