CWE-352

yetiforcecrm is vulnerable to Cross-Site Request Forgery (CSRF)

pimcore is vulnerable to Cross-Site Request Forgery (CSRF)

A Cross-Site Request Forgery (CSRF) in Chamilo LMS 1.11.14 allows attackers to execute arbitrary commands on victim hosts via user interaction with a crafted URL.

livehelperchat is vulnerable to Cross-Site Request Forgery (CSRF)

Airangel HSMX Gateway devices through 5.2.04 allow CSRF.

A cross-site request forgery vulnerability in the HTTP daemon of the Zyxel ARMOR Z1/Z2 firmware could allow an attacker to execute arbitrary commands if they coerce or trick a local user to visit a compromised website with malicious scripts.