• Skip to primary navigation
  • Skip to main content
CVE Vulnerability

CVE Vulnerability

  • CVE’s
  • Products
  • Vendors

CWE-352

CVE-2021-38480

February 23, 2023 by

InHand Networks IR615 Router’s Versions 2.3.0.r4724 and 2.3.0.r4870 are vulnerable to cross-site request forgery when unauthorized commands are submitted from a user the web application trusts. This may allow an attacker to remotely perform actions on the router’s management portal, such as making configuration changes, changing administrator credentials, and running system commands on the router.

CVE-2021-38342

February 23, 2023 by

The Nested Pages WordPress plugin <= 3.1.15 was vulnerable to Cross-Site Request Forgery via the `npBulkAction`s and `npBulkEdit` `admin_post` actions, which allowed attackers to trash or permanently purge arbitrary posts as well as changing their status, reassigning their ownership, and editing other metadata.

CVE-2021-3819

February 23, 2023 by

firefly-iii is vulnerable to Cross-Site Request Forgery (CSRF)

CVE-2021-37725

February 23, 2023 by

A remote cross-site request forgery (csrf) vulnerability was discovered in Aruba SD-WAN Software and Gateways; Aruba Operating System Software version(s): Prior to 8.6.0.4-2.2.0.4; Prior to 8.8.0.1, 8.7.1.2, 8.6.0.8, 8.5.0.12, 8.3.0.15. Aruba has released patches for Aruba SD-WAN Software and Gateways and ArubaOS that address this security vulnerability.

CVE-2021-3775

February 23, 2023 by

showdoc is vulnerable to Cross-Site Request Forgery (CSRF)

CVE-2021-3776

February 23, 2023 by

showdoc is vulnerable to Cross-Site Request Forgery (CSRF)

  • « Go to Previous Page
  • Go to page 1
  • Interim pages omitted …
  • Go to page 263
  • Go to page 264
  • Go to page 265
  • Go to page 266
  • Go to page 267
  • Interim pages omitted …
  • Go to page 424
  • Go to Next Page »

Copyright CVE Vulnerabilities 2023
Data Sources:

  • NIST
  • MITRE
  • CVE Search
  • Open CVE