• Skip to primary navigation
  • Skip to main content
CVE Vulnerability

CVE Vulnerability

  • CVE’s
  • Products
  • Vendors

CWE-352

CVE-2018-15612

February 26, 2023 by

A CSRF vulnerability in the Runtime Config component of Avaya Aura Orchestration Designer could allow an attacker to add, change, or remove administrative settings. Affected versions of Avaya Aura Orchestration Designer include all versions up to 7.2.1.

CVE-2018-15539

February 26, 2023 by

Agentejo Cockpit lacks an anti-CSRF protection mechanism. Thus, an attacker is able to change API tokens, passwords, etc.

CVE-2018-15564

February 26, 2023 by

An issue was discovered in daveismyname simple-cms through 2014-03-11. There is a CSRF vulnerability that can delete any page via admin/?delpage=8.

CVE-2018-15565

February 26, 2023 by

An issue was discovered in daveismyname simple-cms through 2014-03-11. admin/addpage.php does not require authentication for adding a page. This can also be exploited via CSRF.

CVE-2018-15568

February 26, 2023 by

tp5cms through 2017-05-25 has CSRF via admin.php/category/delete.html.

CVE-2018-15569

February 26, 2023 by

my little forum 2.4.12 allows CSRF for deletion of users.

  • « Go to Previous Page
  • Go to page 1
  • Interim pages omitted …
  • Go to page 67
  • Go to page 68
  • Go to page 69
  • Go to page 70
  • Go to page 71
  • Interim pages omitted …
  • Go to page 424
  • Go to Next Page »

Copyright CVE Vulnerabilities 2023
Data Sources:

  • NIST
  • MITRE
  • CVE Search
  • Open CVE