Total
7702 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2018-15539 | 1 Agentejo | 1 Cockpit | 2024-11-21 | N/A |
| Agentejo Cockpit lacks an anti-CSRF protection mechanism. Thus, an attacker is able to change API tokens, passwords, etc. | ||||
| CVE-2018-15334 | 1 F5 | 1 Big-ip Access Policy Manager | 2024-11-21 | N/A |
| A cross-site request forgery (CSRF) vulnerability in the APM webtop 11.2.1 or greater may allow attacker to force an APM webtop session to log out and require re-authentication. | ||||
| CVE-2018-15206 | 1 Bpcbt | 1 Smartvista | 2024-11-21 | N/A |
| BPC SmartVista 2 has CSRF via SVFE2/pages/admpages/roles/createrole.jsf. | ||||
| CVE-2018-15203 | 1 Ignitedcms | 1 Ignitedcms | 2024-11-21 | 6.5 Medium |
| An issue was discovered in Ignited CMS through 2017-02-19. ign/index.php/admin/pages/add_page allows a CSRF attack to add pages. | ||||
| CVE-2018-15202 | 1 Juunan06 | 1 Ecommerce | 2024-11-21 | N/A |
| An issue was discovered in Juunan06 eCommerce through 2018-08-05. There is a CSRF vulnerability in ee/eBoutique/app/template/includes/crudTreatment.php that can add new users and add products. | ||||
| CVE-2018-15198 | 1 Onethink | 1 Onethink | 2024-11-21 | N/A |
| An issue was discovered in OneThink v1.1. There is a CSRF vulnerability in admin.php?s=/User/add.html that can add a user. | ||||
| CVE-2018-15197 | 1 Onethink | 1 Onethink | 2024-11-21 | N/A |
| An issue was discovered in OneThink v1.1. There is a CSRF vulnerability in admin.php?s=/AuthManager/addToGroup.html that can endow administrator privileges. | ||||
| CVE-2018-15193 | 1 Gogs | 1 Gogs | 2024-11-21 | N/A |
| A CSRF vulnerability in the admin panel in Gogs through 0.11.53 allows remote attackers to execute admin operations via a crafted issue / link. | ||||
| CVE-2018-15187 | 1 Advanced Real Estate Script Project | 1 Advanced Real Estate Script | 2024-11-21 | N/A |
| PHP Scripts Mall advanced-real-estate-script 4.0.9 has CSRF via edit-profile.php. | ||||
| CVE-2018-15186 | 1 Chartered Accountant \ | 1 Auditor Website Project | 2024-11-21 | N/A |
| PHP Scripts Mall Chartered Accountant : Auditor Website 2.0.1 has CSRF via client/auditor/updprofile.php. | ||||
| CVE-2018-15177 | 1 Gxlcms | 1 Gxlcms | 2024-11-21 | N/A |
| In Gxlcms 2.0, a news/index.php?s=Admin-Admin-Insert CSRF attack can add an administrator account. | ||||
| CVE-2018-15121 | 1 Auth0 | 2 Aspnet, Aspnet-owin | 2024-11-21 | N/A |
| An issue was discovered in Auth0 auth0-aspnet and auth0-aspnet-owin. Affected packages do not use or validate the state parameter of the OAuth 2.0 and OpenID Connect protocols. This leaves applications vulnerable to CSRF attacks during authentication and authorization operations. | ||||
| CVE-2018-14978 | 1 Q-cms | 1 Qcms | 2024-11-21 | N/A |
| An issue was discovered in QCMS 3.0.1. CSRF exists via the backend/user/admin/add.html URI. | ||||
| CVE-2018-14966 | 1 Emlsoft Project | 1 Emlsoft | 2024-11-21 | N/A |
| An issue was discovered in EMLsoft 5.4.5. The eml/upload/eml/?action=user&do=add page allows CSRF. | ||||
| CVE-2018-14965 | 1 Emlsoft Project | 1 Emlsoft | 2024-11-21 | N/A |
| An issue was discovered in EMLsoft 5.4.5. The eml/upload/eml/?action=address&do=add page allows CSRF. | ||||
| CVE-2018-14963 | 1 Zzcms | 1 Zzcms | 2024-11-21 | N/A |
| zzcms 8.3 has CSRF via the admin/adminadd.php?action=add URI. | ||||
| CVE-2018-14960 | 1 Xiao5ucompany Project | 1 Xiao5ucompany | 2024-11-21 | N/A |
| Xiao5uCompany 1.7 has CSRF via admin/Admin.asp. | ||||
| CVE-2018-14959 | 1 Weaselcms Project | 1 Weaselcms | 2024-11-21 | N/A |
| An issue was discovered in WeaselCMS v0.3.5. CSRF can create new pages via an index.php?b=pages&a=new URI. | ||||
| CVE-2018-14958 | 1 Weaselcms Project | 1 Weaselcms | 2024-11-21 | N/A |
| An issue was discovered in WeaselCMS v0.3.5. CSRF can update the website settings (such as the theme, title, and description) via index.php. | ||||
| CVE-2018-14930 | 1 Polarisft | 1 Intellect Core Banking | 2024-11-21 | N/A |
| An issue was discovered in the Armor module in Polaris FT Intellect Core Banking 9.7.1. CSRF can occur via a /CollatWebApp/gcmsRefInsert?name=SUPP URI. | ||||