CWE-352
Medium likelihoodCross-Site Request Forgery (CSRF)
The web application does not, or cannot, sufficiently verify whether a request was intentionally provided by the user who sent the request, which could have originated from an unauthorized actor.
9,391 vulnerabilities with CWE-352
CVE-2012-1636
stickynote < 7.x-1.1 - Cross-Site Request Forgery via Sticky Note Deletion
CVE-2012-1897
Wolf CMS <= 0.75 - Cross-Site Request Forgery via Admin Endpoints
CVE-2012-0748
IBM Rational Team Concert <4.0.0.1 - CSRF
CVE-2012-4448
WordPress 3.4.2 - Cross-Site Request Forgery via Dashboard Incoming Links Edit Action
CVE-2012-2734
cumin < 0.1.5444 - Cross-Site Request Forgery
CVE-2012-4051
JAMF Casper Suite < 8.61 - Cross-Site Request Forgery via Save Action
CVE-2012-1631
Admin:hover module for Drupal - Cross-Site Request Forgery
CVE-2012-1633
Password Policy < 6.x-1.4 and 7.x-1.0 beta3 - Cross-Site Request Forgery
CVE-2012-5005
VR GPub 4.0 - Cross-Site Request Forgery in Admin Options
CVE-2012-5004
Parallels H-Sphere 3.3 Patch 1 - CSRF
CVE-2012-1901
FlexCMS < 3.2.1 - Cross-Site Request Forgery via Profile Edit and Page Creation
CVE-2012-3028
SIMATIC PCS7 and WinCC < 7.0 - Cross-Site Request Forgery
CVE-2012-2061
Nijskens RAF Admintools - CSRF
CVE-2012-2057
Ubercart Bulk Stock Updater - Cross-Site Request Forgery via formAPI
CVE-2012-2056
Content Lock module for Drupal - Cross-Site Request Forgery
CVE-2012-2996
Trend Micro InterScan Messaging Security Suite 7.1 - CSRF
CVE-2012-3908
Cisco Identity Services Engine Software - Cross-Site Request Forgery in Administrator Interface
CVE-2012-2275
TestLink < 1.9.3 - Cross-Site Request Forgery via User Management
CVE-2012-4893
Webmin < 1.590 - Cross-Site Request Forgery via file/show.cgi
CVE-2012-0714
IBM Maximo Asset Mgmt 6.2-7.5 - CSRF
CVE-2012-2316
OpenKM < 5.1.8-2 - Cross-Site Request Forgery via Admin Scripting Endpoint
CVE-2012-1580
MediaWiki 1.17.x < 1.17.3 and 1.18.x < 1.18.2 - Cross-Site Request Forgery via Special:Upload
CVE-2012-1578
MediaWiki 1.17.x < 1.17.3 and 1.18.x < 1.18.2 - Cross-Site Request Forgery via Block/Unblock Module
CVE-2012-3256
HP Business Availability Center <8.07 - CSRF
CVE-2012-4877
Flatnux < 2011-08-09-2 - Cross-Site Request Forgery in controlcenter.php
Details
Vulnerabilities
9,391
Exploit Likelihood
Medium