Showing 1 - 25 of 3,189

CSRF Files

Microsoft Exchange Server msExchEcpCanary CSRF / Privilege Escalation: Posted Feb 24, 2021; Authored by Source Incite | Site github.com; Microsoft Exchange Server has a flaw that exists within the HasValidCanary function inside of the Canary15 class. The issue results in an insecure generation of cross site request forgery tokens that can be used to install an office-addins. An attacker can leverage this vulnerability to escalate privileges to an administrative account.; tags | exploit, csrf; advisories | CVE-2021-24085; MD5 | 81b28382748f4fe34c5a25dbf5cda8e9; Download | Favorite | View

Apache MyFaces 2.x Cross Site Request Forgery: Posted Feb 20, 2021; Authored by Wolfgang Ettlinger; Apache MyFaces versions 2.2.13 and below, 2.3.7 and below, 2.3-next-M4 and below, and 2.1 and below suffer from a cross site request forgery vulnerability.; tags | exploit, csrf; advisories | CVE-2021-26296; MD5 | a8e80747410cdf24bd08eed09d1cb041; Download | Favorite | View

Backdoor.Win32.Agent.aak Code Execution / Cross Site Request Forgery: Posted Feb 18, 2021; Authored by malvuln | Site malvuln.com; Backdoor.Win32.Agent.aak malware suffers from code execution and cross site request forgery vulnerabilities.; tags | exploit, vulnerability, code execution, csrf; systems | windows; MD5 | 3709fd6065b0c25e41efd07763d6e07d; Download | Favorite | View

Unibox 2.4 CSRF / Remote Code Execution: Posted Feb 8, 2021; Authored by Kaustubh G. Padwad; Unibox version 2.4 suffers from remote code execution and cross site request forgery vulnerabilities.; tags | exploit, remote, vulnerability, code execution, csrf; MD5 | 0d9c1908b02b93829d56268f4e5a5330; Download | Favorite | View

Unibox Cross Site Request Forgery: Posted Feb 8, 2021; Authored by Kaustubh G. Padwad; Various Unibox products suffers from a cross site request forgery vulnerability.; tags | exploit, csrf; MD5 | f4a13dbef7fa744bc2d7fb564747eaea; Download | Favorite | View

Pixelimity 1.0 Cross Site Request Forgery: Posted Feb 3, 2021; Authored by Noth; Pixelimity version 1.0 suffers from a cross site request forgery vulnerability.; tags | exploit, csrf; advisories | CVE-2020-23522; MD5 | 9703bfe3f4d733d4fa66e4bc6ad6e779; Download | Favorite | View

bloofoxCMS 0.5.2.1 Cross Site Request Forgery: Posted Feb 1, 2021; Authored by LiPeiYi; bloofoxCMS version 0.5.2.1 suffers from a cross site request forgery vulnerability.; tags | exploit, csrf; MD5 | 01f0ae89aa79bdcb7db265f8a62f6725; Download | Favorite | View

STVS ProVision 5.9.10 Cross Site Request Forgery: Posted Jan 27, 2021; Authored by LiquidWorm | Site zeroscience.mk; STVS ProVision version 5.9.10 suffers from a cross site request forgery vulnerability.; tags | exploit, csrf; MD5 | 9d1413e4356b04442edd4cf4047a66f3; Download | Favorite | View

MyBB Timeline 1.0 Cross Site Request Forgery / Cross Site Scripting: Posted Jan 23, 2021; Authored by 0xB9; MyBB Timeline plugin version 1.0 suffers from cross site request forgery and cross site scripting vulnerabilities.; tags | exploit, vulnerability, xss, csrf; MD5 | 07af945c1ca865c50d8bff5444d26630; Download | Favorite | View

Selea Targa IP OCR-ANPR Camera Cross Site Request Forgery: Posted Jan 22, 2021; Authored by LiquidWorm | Site zeroscience.mk; Selea Targa IP OCR-ANPR Camera suffers from a cross site request forgery vulnerability that allows for adding an administrator. Multiple versions and firmwares are affected.; tags | exploit, csrf; MD5 | be38ae0d2e3c159a66288558c320fb05; Download | Favorite | View

Anchor CMS 0.12.7 Cross Site Request Forgery: Posted Jan 21, 2021; Authored by Ninad Mishra; Anchor CMS version 0.12.7 suffers from a cross site request forgery vulnerability.; tags | exploit, csrf; advisories | CVE-2020-23342; MD5 | 531e88f62d5b3b0859e9fbe1287e363c; Download | Favorite | View

Online Hotel Reservation System 1.0 Cross Site Request Forgery: Posted Jan 15, 2021; Authored by Mesut Cetin; Online Hotel Reservation System version 1.0 suffers from a cross site request forgery vulnerability.; tags | exploit, csrf; MD5 | fb9e7a0cd6253ffe05b2cf9641cb64f7; Download | Favorite | View

PHP-Fusion 9.03.90 Cross Site Request Forgery: Posted Jan 15, 2021; Authored by Mohamed Oosman B S; PHP-Fusion version 9.03.90 suffers from a cross site request forgery vulnerability.; tags | exploit, php, csrf; MD5 | a76b7516f7ee7034ed0e11633425eb87; Download | Favorite | View

Pepperl+Fuchs IO-Link Master Series 1.36 CSRF / XSS / Command Injection: Posted Jan 13, 2021; Authored by T. Weber | Site sec-consult.com; Pepperl+Fuchs IO-Link Master Series with system version 1.36 and application version 1.5.28 suffers from command injection, cross site request forgery, cross site scripting, denial of service, and null pointer vulnerabilities.; tags | exploit, denial of service, vulnerability, xss, csrf; advisories | CVE-2020-12511, CVE-2020-12512, CVE-2020-12513, CVE-2020-12514; MD5 | aa2d5c40642dad8f8d6fe9a2f9666788; Download | Favorite | View

OpenCart 3.0.36 Cross Site Request Forgery: Posted Jan 11, 2021; Authored by Mahendra Purbia; OpenCart version 3.0.36 account takeover cross site request forgery exploit.; tags | exploit, csrf; MD5 | 4799d11fbee89c9aa753825d8fac8753; Download | Favorite | View

Advanced Webhost Billing System 3.7.0 Cross Site Request Forgery: Posted Jan 6, 2021; Authored by Rahul Ramakant Singh; Advanced Webhost Billing System version 3.7.0 suffers from a cross site request forgery vulnerability.; tags | exploit, csrf; MD5 | 322e1cc37285fbfcaf5ed1c2abb3cf49; Download | Favorite | View

Trend Micro IWSVA CSRF / XSS / Bypass / SSRF / Code Execution: Posted Dec 17, 2020; Authored by Wolfgang Ettlinger | Site sec-consult.com; Trend Micro InterScan Web Security Virtual Appliance (IWSVA) versions below 6.5 SP2 EN Patch 4 Build 1919 suffers from bypass, command execution, cross site request forgery, cross site scripting, and server-side request forgery vulnerabilities.; tags | exploit, web, vulnerability, xss, csrf; advisories | CVE-2020-8461, CVE-2020-8462, CVE-2020-8463, CVE-2020-8464, CVE-2020-8465, CVE-2020-8466; MD5 | 0011367f30c2126b8da594f31400e629; Download | Favorite | View

Rukovoditel 2.6.1 Cross Site Request Forgery: Posted Dec 14, 2020; Authored by KeopssGroup0day Inc; Rukovoditel version 2.6.1 suffers from a cross site request forgery vulnerability.; tags | exploit, csrf; MD5 | 4b64683a6cbbdaf080d796bd5839739e; Download | Favorite | View

OpenAsset Digital Asset Management Cross Site Request Forgery: Posted Dec 11, 2020; Authored by Jack Misiura; OpenAsset Digital Asset Management suffers from a cross site request forgery vulnerability.; tags | exploit, csrf; advisories | CVE-2020-28858; MD5 | 4ef799a57a5bebf1c7686ee9e8bb591b; Download | Favorite | View

OpenCart 3.0.3.6 Cross Site Request Forgery: Posted Dec 10, 2020; Authored by Mahendra Purbia; OpenCart version 3.0.3.6 suffers from a cross site request forgery vulnerability.; tags | exploit, csrf; MD5 | 653b511525bcf3f512b9490ff9ce885f; Download | Favorite | View

EgavilanMedia User Registration And Login System With Admin Panel 1.0 CSRF: Posted Dec 2, 2020; Authored by Hardik Solanki; EgavilanMedia User Registration and Login System with Admin Panel version 1.0 suffers from a cross site request forgery vulnerability.; tags | exploit, csrf; MD5 | 2f6b32d07f651352b576dd97c5209593; Download | Favorite | View

TypeSetter 5.1 Cross Site Request Forgery: Posted Dec 1, 2020; Authored by Alperen Ergel; TypeSetter version 5.1 suffers from a cross site request forgery vulnerability.; tags | exploit, csrf; MD5 | b67e8396e549f39a1f6d2f1fe8eb968a; Download | Favorite | View

ZTE MF253V 1.0.0B04 XSS / CSRF / Hardcoded Password: Posted Nov 24, 2020; Authored by T. Weber, S. Robertz | Site sec-consult.com; ZTE WLAN router MF253V version 1.0.0B04 suffers from cross site request forgery, hardcoded password, outdated component, and cross site scripting vulnerabilities.; tags | exploit, vulnerability, xss, csrf; MD5 | b293a0edbfa49250febb13cbf573bd9b; Download | Favorite | View

Customer Support System 1.0 Cross Site Request Forgery: Posted Nov 11, 2020; Authored by Ahmed Abbas; Customer Support System version 1.0 suffers from a cross site request forgery vulnerability.; tags | exploit, csrf; MD5 | 7cb61348999bd582e9317e96cda8d769; Download | Favorite | View

Genexis Platinum-4410 P4410-V2-1.28 Missing Access Control / CSRF: Posted Nov 9, 2020; Authored by Jinson Varghese Behanan; Genexis Platinum-4410 version P4410-V2-1.28 suffers from missing access control and cross site request forgery vulnerabilities.; tags | exploit, vulnerability, bypass, csrf; advisories | CVE-2020-25015; MD5 | 19dd7cfa841cbf52a780424e364979a9; Download | Favorite | View

Page 1 of 128 Back 1 2 3 4 5 Next

Top Authors In Last 30 Days

Red Hat 111 files
Ubuntu 60 files
malvuln 57 files
Google Security Research 12 files
Gentoo 10 files
Erik David Martin 9 files
Apple 9 files
LiquidWorm 6 files
Tim Willis 4 files
0xB9 4 files

File Archives

Systems

AIX (421)
Apple (1,774)
BSD (368)
Cisco (1,902)
Debian (5,945)
Fedora (1,688)
FreeBSD (1,241)
Gentoo (4,040)
HPUX (873)
iOS (284)
iPhone (108)
IRIX (220)
Juniper (67)
Linux (39,460)
Mac OS X (673)
Mandriva (3,105)
NetBSD (255)
OpenBSD (472)
RedHat (9,691)
Slackware (941)
Solaris (1,598)
SUSE (1,444)
Ubuntu (7,135)
UNIX (8,846)
UnixWare (180)
Windows (5,809)
Other

CSRF Files

File Archive:

February 2021

Top Authors In Last 30 Days

File Tags

File Archives

Systems