• Skip to primary navigation
  • Skip to main content
CVE Vulnerability

CVE Vulnerability

  • CVE’s
  • Products
  • Vendors

CWE-352

CVE-2018-17996

February 26, 2023 by

LayerBB before 1.1.3 allows CSRF for adding a user via admin/new_user.php, deleting a user via admin/members.php/delete_user/, and deleting content via mod/delete.php/.

CVE-2018-17869

February 26, 2023 by

DASAN H660GW devices do not implement any CSRF protection mechanism.

CVE-2018-1790

February 26, 2023 by

IBM Financial Transaction Manager for Digital Payments for Multi-Platform 3.0.2 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM X-Force ID: 148944.

CVE-2018-17858

February 26, 2023 by

An issue was discovered in Joomla! before 3.8.13. com_installer actions do not have sufficient CSRF hardening in the backend.

CVE-2018-17789

February 26, 2023 by

Prospecta Master Data Online (MDO) allows CSRF.

CVE-2018-17792

February 26, 2023 by

MDaemon Webmail (formerly WorldClient) has CSRF.

  • « Go to Previous Page
  • Go to page 1
  • Interim pages omitted …
  • Go to page 56
  • Go to page 57
  • Go to page 58
  • Go to page 59
  • Go to page 60
  • Interim pages omitted …
  • Go to page 424
  • Go to Next Page »

Copyright CVE Vulnerabilities 2023
Data Sources:

  • NIST
  • MITRE
  • CVE Search
  • Open CVE