• Skip to primary navigation
  • Skip to main content
CVE Vulnerability

CVE Vulnerability

  • CVE’s
  • Products
  • Vendors

CWE-352

CVE-2019-13056

February 26, 2023 by

An issue was discovered in CyberPanel through 1.8.4. On the user edit page, an attacker can edit the administrator’s e-mail and password because of the lack of CSRF protection.

CVE-2019-13071

February 26, 2023 by

CSRF in the Agent/Center component of CyberPower PowerPanel Business Edition 3.4.0 allows an attacker to submit POST requests to any forms in the web application. This can be exploited by tricking an authenticated user into visiting an attacker controlled web page.

CVE-2019-12934

February 26, 2023 by

An issue was discovered in the wp-code-highlightjs plugin through 0.6.2 for WordPress. wp-admin/options-general.php?page=wp-code-highlight-js allows CSRF, as demonstrated by an XSS payload in the hljs_additional_css parameter.

CVE-2019-12922

February 26, 2023 by

A CSRF issue in phpMyAdmin 4.9.0.1 allows deletion of any server in the Setup page.

CVE-2019-12923

February 26, 2023 by

In MailEnable Enterprise Premium 10.23, the potential cross-site request forgery (CSRF) protection mechanism was not implemented correctly and it was possible to bypass it by removing the anti-CSRF token parameter from the request. This could allow an attacker to manipulate a user into unwittingly performing actions within the application (such as sending email, adding contacts, or changing settings) on behalf of the attacker.

CVE-2019-12826

February 26, 2023 by

A Cross-Site-Request-Forgery (CSRF) vulnerability in widget_logic.php in the 2by2host Widget Logic plugin before 5.10.2 for WordPress allows remote attackers to execute PHP code via snippets (that are attached to widgets and then eval’d to dynamically determine their visibility) by crafting a malicious POST request that tricks administrators into adding the code.

  • « Go to Previous Page
  • Go to page 1
  • Interim pages omitted …
  • Go to page 225
  • Go to page 226
  • Go to page 227
  • Go to page 228
  • Go to page 229
  • Interim pages omitted …
  • Go to page 424
  • Go to Next Page »

Copyright CVE Vulnerabilities 2023
Data Sources:

  • NIST
  • MITRE
  • CVE Search
  • Open CVE