• Skip to primary navigation
  • Skip to main content
CVE Vulnerability

CVE Vulnerability

  • CVE’s
  • Products
  • Vendors

CWE-352

CVE-2019-14481

February 26, 2023 by

AdRem NetCrunch 10.6.0.4587 has a Cross-Site Request Forgery (CSRF) vulnerability in the NetCrunch web client. Successful exploitation requires a logged-in user to open a malicious page and leads to account takeover.

CVE-2019-14526

February 26, 2023 by

An issue was discovered on NETGEAR Nighthawk M1 (MR1100) devices before 12.06.03. The web-interface Cross-Site Request Forgery token is stored in a dynamically generated JavaScript file, and therefore can be embedded in third party pages, and re-used against the Nighthawk web interface. This entirely bypasses the intended security benefits of the use of a CSRF-protection token.

CVE-2019-14327

February 26, 2023 by

A CSRF vulnerability in Settings form in the Custom Simple Rss plugin 2.0.6 for WordPress allows attackers to change the plugin settings.

CVE-2019-14328

February 26, 2023 by

The Simple Membership plugin before 3.8.5 for WordPress has CSRF affecting the Bulk Operation section.

CVE-2019-14346

February 26, 2023 by

Internal/Views/config.php in Schben Adive 2.0.7 allows admin/config CSRF to change a user password.

CVE-2019-14304

February 26, 2023 by

Ricoh SP C250DN 1.06 devices allow CSRF.

  • « Go to Previous Page
  • Go to page 1
  • Interim pages omitted …
  • Go to page 220
  • Go to page 221
  • Go to page 222
  • Go to page 223
  • Go to page 224
  • Interim pages omitted …
  • Go to page 424
  • Go to Next Page »

Copyright CVE Vulnerabilities 2023
Data Sources:

  • NIST
  • MITRE
  • CVE Search
  • Open CVE