Total
7170 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2023-22681 | 1 Online Exam Software \ | 1 Eexamhall Project | 2025-01-10 | 4.3 Medium |
| Cross-Site Request Forgery (CSRF) vulnerability in Aarvanshinfotech Online Exam Software: eExamhall plugin <= 4.0 versions. | ||||
| CVE-2023-22678 | 1 Superior Faq Project | 1 Superior Faq | 2025-01-10 | 5.4 Medium |
| Cross-Site Request Forgery (CSRF) vulnerability in Rafael Dery Superior FAQ plugin <= 1.0.2 versions. | ||||
| CVE-2023-23721 | 1 Admin Log Project | 1 Admin Log | 2025-01-10 | 4.3 Medium |
| Cross-Site Request Forgery (CSRF) vulnerability in David Gwyer Admin Log plugin <= 1.50 versions. | ||||
| CVE-2022-30705 | 1 Wordpress Ping Optimizer Project | 1 Wordpress Ping Optimizer | 2025-01-10 | 5.4 Medium |
| Cross-Site Request Forgery (CSRF) vulnerability in Pankaj Jha WordPress Ping Optimizer plugin <= 2.35.1.2.3 versions. | ||||
| CVE-2024-13293 | 2025-01-10 | 3.1 Low | ||
| Cross-Site Request Forgery (CSRF) vulnerability in Drupal POST File allows Cross Site Request Forgery.This issue affects POST File: from 0.0.0 before 1.0.2. | ||||
| CVE-2022-38077 | 1 Essentialplugin | 1 Popup Anything | 2025-01-10 | 4.3 Medium |
| Cross-Site Request Forgery (CSRF) vulnerability in WP OnlineSupport, Essential Plugin Popup Anything – A Marketing Popup and Lead Generation Conversions plugin <= 2.2.1 versions. | ||||
| CVE-2023-23861 | 1 Gmace Project | 1 Gmace | 2025-01-10 | 5.4 Medium |
| Cross-Site Request Forgery (CSRF) vulnerability in German Mesky GMAce plugin <= 1.5.2 versions. | ||||
| CVE-2022-41633 | 1 Peepso | 1 Peepso | 2025-01-10 | 5.4 Medium |
| Cross-Site Request Forgery (CSRF) vulnerability in PeepSo Community by PeepSo – Social Network, Membership, Registration, User Profiles plugin <= 6.0.2.0 versions. | ||||
| CVE-2023-23801 | 1 Hasthemes | 1 Really Simple Google Tag Manager | 2025-01-10 | 4.3 Medium |
| Cross-Site Request Forgery (CSRF) vulnerability in HasThemes Really Simple Google Tag Manager plugin <= 1.0.6 versions. | ||||
| CVE-2022-46793 | 1 Adtribes | 1 Product Feed Pro For Woocommerce | 2025-01-10 | 5.4 Medium |
| Cross-Site Request Forgery (CSRF) vulnerability in AdTribes.Io Product Feed PRO for WooCommerce plugin <= 12.4.4 versions. | ||||
| CVE-2023-30474 | 1 Ultimate Noindex Nofollow Tool Ii Project | 1 Ultimate Noindex Nofollow Tool Ii | 2025-01-10 | 4.3 Medium |
| Cross-Site Request Forgery (CSRF) vulnerability in Kilian Evang Ultimate Noindex Nofollow Tool II plugin <= 1.3 versions. | ||||
| CVE-2024-6662 | 2025-01-10 | N/A | ||
| Websites managed by MegaBIP in versions below 5.15 are vulnerable to Cross-Site Request Forgery (CSRF) as the form available under "/edytor/index.php?id=7,7,0" lacks protection mechanisms. A user could be tricked into visiting a malicious website, which would send POST request to this endpoint. If the victim is a logged in administrator, this could lead to creation of new accounts and granting of administrative permissions. | ||||
| CVE-2024-13304 | 2025-01-10 | 4.5 Medium | ||
| Cross-Site Request Forgery (CSRF) vulnerability in Drupal Minify JS allows Cross Site Request Forgery.This issue affects Minify JS: from 0.0.0 before 3.0.3. | ||||
| CVE-2024-13284 | 2025-01-10 | 8.8 High | ||
| Cross-Site Request Forgery (CSRF) vulnerability in Drupal Gutenberg allows Cross Site Request Forgery.This issue affects Gutenberg: from 0.0.0 before 2.13.0, from 3.0.0 before 3.0.5. | ||||
| CVE-2024-13260 | 2025-01-10 | 8.8 High | ||
| Cross-Site Request Forgery (CSRF) vulnerability in Drupal Migrate queue importer allows Cross Site Request Forgery.This issue affects Migrate queue importer: from 0.0.0 before 2.1.1. | ||||
| CVE-2024-13250 | 2025-01-10 | 8.8 High | ||
| Cross-Site Request Forgery (CSRF) vulnerability in Drupal Drupal Symfony Mailer Lite allows Cross Site Request Forgery.This issue affects Drupal Symfony Mailer Lite: from 0.0.0 before 1.0.6. | ||||
| CVE-2024-13244 | 2025-01-10 | 8.8 High | ||
| Cross-Site Request Forgery (CSRF) vulnerability in Drupal Migrate Tools allows Cross Site Request Forgery.This issue affects Migrate Tools: from 0.0.0 before 6.0.3. | ||||
| CVE-2024-39628 | 1 Ninjaforms | 1 Ninja Forms | 2025-01-09 | 5.4 Medium |
| Cross-Site Request Forgery (CSRF) vulnerability in Saturday Drive Ninja Forms allows Cross Site Request Forgery.This issue affects Ninja Forms: from n/a through 3.8.6. | ||||
| CVE-2024-13203 | 2025-01-09 | 4.3 Medium | ||
| A vulnerability was found in kurniaramadhan E-Commerce-PHP 1.0. It has been classified as problematic. Affected is an unknown function. The manipulation leads to cross-site request forgery. It is possible to launch the attack remotely. The vendor was contacted early about this disclosure but did not respond in any way. | ||||
| CVE-2022-45074 | 1 Areteit | 1 Activity Reactions For Buddypress | 2025-01-09 | 4.3 Medium |
| Cross-Site Request Forgery (CSRF) vulnerability in Paramveer Singh for Arete IT Private Limited Activity Reactions For Buddypress plugin <= 1.0.22 versions. | ||||