• Skip to primary navigation
  • Skip to main content
CVE Vulnerability

CVE Vulnerability

  • CVE’s
  • Products
  • Vendors

CWE-352

CVE-2022-3632

February 23, 2023 by godfreyd94

The OAuth Client by DigitialPixies WordPress plugin through 1.1.0 does not have CSRF checks in some places, which could allow attackers to make logged-in users perform unwanted actions.

CVE-2022-36346

February 23, 2023 by godfreyd94

Multiple Cross-Site Request Forgery (CSRF) vulnerabilities in Max Foundry MaxButtons plugin <= 9.2 at WordPress.

CVE-2022-36358

February 23, 2023 by godfreyd94

Cross-Site Request Forgery (CSRF) vulnerability in SEO Scout plugin <= 0.9.83 at WordPress allows attackers to trick users with administrative rights to unintentionally change the plugin settings.

CVE-2022-36224

February 23, 2023 by godfreyd94

XunRuiCMS V4.5.6 is vulnerable to Cross Site Request Forgery (CSRF).

CVE-2022-36225

February 23, 2023 by godfreyd94

EyouCMS V1.5.8-UTF8-SP1 is vulnerable to Cross Site Request Forgery (CSRF) via the background, column management function and add.

CVE-2022-36095

February 23, 2023 by godfreyd94

XWiki Platform is a generic wiki platform. Prior to versions 13.10.5 and 14.3, it is possible to perform a Cross-Site Request Forgery (CSRF) attack for adding or removing tags on XWiki pages. The problem has been patched in XWiki 13.10.5 and 14.3. As a workaround, one may locally modify the `documentTags.vm` template in one’s filesystem, to apply the changes exposed there.

  • « Go to Previous Page
  • Go to page 1
  • Interim pages omitted …
  • Go to page 353
  • Go to page 354
  • Go to page 355
  • Go to page 356
  • Go to page 357
  • Interim pages omitted …
  • Go to page 424
  • Go to Next Page »

Copyright CVE Vulnerabilities 2023
Data Sources:

  • NIST
  • MITRE
  • CVE Search
  • Open CVE