• Skip to primary navigation
  • Skip to main content
CVE Vulnerability

CVE Vulnerability

  • CVE’s
  • Products
  • Vendors

CWE-352

CVE-2019-15496

February 26, 2023 by

MyT Project Management 1.5.1 lacks CSRF protection and, for example, allows a user/create CSRF attack. This could lead to an attacker tricking the administrator into executing arbitrary code via a specially crafted HTML page.

CVE-2019-15515

February 26, 2023 by

Discourse 2.3.2 sends the CSRF token in the query string.

CVE-2019-15329

February 26, 2023 by

The import-users-from-csv-with-meta plugin before 1.14.0.3 for WordPress has CSRF.

CVE-2019-15229

February 26, 2023 by

FUEL CMS 1.4.4 has CSRF in the blocks/create/ Create Blocks section of the Admin console. This could lead to an attacker tricking the administrator into executing arbitrary code via a specially crafted HTML page.

CVE-2019-15238

February 26, 2023 by

The cforms2 plugin before 15.0.2 for WordPress has CSRF related to the IP address field.

CVE-2019-15113

February 26, 2023 by

The companion-sitemap-generator plugin before 3.7.0 for WordPress has CSRF.

  • « Go to Previous Page
  • Go to page 1
  • Interim pages omitted …
  • Go to page 216
  • Go to page 217
  • Go to page 218
  • Go to page 219
  • Go to page 220
  • Interim pages omitted …
  • Go to page 424
  • Go to Next Page »

Copyright CVE Vulnerabilities 2023
Data Sources:

  • NIST
  • MITRE
  • CVE Search
  • Open CVE