MediaWiki OAuth2 Client version 0.3 suffers from a cross site request forgery vulnerability.
46e749ce553be96c1690bf02ed0d0f80Red Hat Security Advisory 2019-2503-01 - Jenkins is a continuous integration server that monitors executions of repeated jobs, such as building a software project or jobs run by cron. Issues addressed include a cross site request forgery vulnerability.
1dae2b9f7474004e5445e2f4a1621e79WordPress Download Manager plugin version 2.5 suffers from a cross site request forgery vulnerability.
3b6b937fa5704c93fe49058f807b88daRed Hat Security Advisory 2019-2483-01 - Red Hat Single Sign-On 7.3 is a standalone server, based on the Keycloak project, that provides authentication and standards-based single sign-on capabilities for web and mobile applications. This release of Red Hat Single Sign-On 7.3.3 serves as a replacement for Red Hat Single Sign-On 7.3.2, and includes bug fixes and enhancements, which are documented in the Release Notes, linked to in the References section. Issues addressed include a cross site request forgery vulnerability.
3c12601611aa705159e202f1988e14edAdive Framework version 2.0.7 suffers from a cross site request forgery vulnerability.
33360d4da6f14944b2b0aba3dddeff90Red Hat Security Advisory 2019-2413-01 - This release of Red Hat Fuse 7.4.0 serves as a replacement for Red Hat Fuse 7.3, and includes bug fixes and enhancements, which are documented in the Release Notes document linked to in the References. Issues addressed include bypass, code execution, cross site request forgery, and deserialization vulnerabilities.
53bb333aee70326e114d65367280c8c2Daily Expense Manager version 1.0 suffers from a cross site request forgery vulnerability.
aacd6389e460b3f72eeb1843b91f5b1fCollege Notes Management System version 1.0 suffers from a cross site request forgery vulnerability.
cad2fa1a245b2cc2094415bc5958fd91Cisco Catalyst 3850 Series Device Manager version 3.6.10E suffers from a cross site request forgery vulnerability.
bf640f52455eebc617b1932da2a81ef2WordPress Simple Membership plugin version 3.8.4 suffers from a cross site request forgery vulnerability.
eed176e4223e7d40e2546897deb1da64Ubuntu Security Notice 4054-2 - USN-4054-1 fixed vulnerabilities in Firefox. The update introduced various minor regressions. This update fixes the problems. A sandbox escape was discovered in Firefox. If a user were tricked in to installing a malicious language pack, an attacker could exploit this to gain additional privileges. Multiple security issues were discovered in Firefox. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit these to cause a denial of service, obtain sensitive information, bypass same origin restrictions, conduct cross-site scripting attacks, conduct cross-site request forgery attacks, spoof origin attributes, spoof the addressbar contents, bypass safebrowsing protections, or execute arbitrary code. It was discovered that Firefox treats all files in a directory as same origin. If a user were tricked in to downloading a specially crafted HTML file, an attacker could potentially exploit this to obtain sensitive information from local files. Various other issues were also addressed.
e9c0ca3d330f36b3511d7b7429ddec69Cisco Wireless Controller version 3.6.10E suffers from a cross site request forgery vulnerability.
bb26d39cc95d12f76bb67164e18c9fa0Debian Linux Security Advisory 4482-1 - Multiple security issues have been found in Thunderbird which could potentially result in the execution of arbitrary code, cross-site scripting, spoofing, information disclosure, denial of service or cross-site request forgery.
98a6d07eeef8d662beb2fa0f236cb9d3Ubuntu Security Notice 4054-1 - A sandbox escape was discovered in Firefox. If a user were tricked in to installing a malicious language pack, an attacker could exploit this to gain additional privileges. Multiple security issues were discovered in Firefox. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit these to cause a denial of service, obtain sensitive information, bypass same origin restrictions, conduct cross-site scripting attacks, conduct cross-site request forgery attacks, spoof origin attributes, spoof the addressbar contents, bypass safebrowsing protections, or execute arbitrary code. Various other issues were also addressed.
8ea6959ed7ac020d5ddd786544d68258Debian Linux Security Advisory 4479-1 - Multiple security issues have been found in the Mozilla Firefox web browser, which could potentially result in the execution of arbitrary code, cross-site scripting, spoofing, information disclosure, denial of service or cross-site request forgery.
1e90e6a1c90fc8275f2fadb11f5d1fc8WorldClient version 14 suffers from a cross site request forgery vulnerability.
709b955d4f8bddb74c3308c677792d0fPowerPanel Business Edition version 3.4.0 is vulnerable to cross site request forgery vulnerability. This can be exploited by tricking an authenticated user into visiting a web page controlled by a malicious person.
a9ab16dd95ed0e4e8b09539a84c83b30TP-Link TL-WR940N and TL-WR941ND suffer from brute force and cross site request forgery vulnerabilities.
d88a4dd515088c57f99d1a9bd9ab410dHuawei HG530 suffers from a cross site request forgery vulnerability.
f8631158beda46624378b60bb87aa897CyberPanel version 1.8.4 suffers from a cross site request forgery vulnerability.
b87d945d5d7aa396b402e19b9257e188Fortinet FCM-MB40 suffers from remote command execution and cross site request forgery vulnerabilities.
e2212fb8aa1889c54380a3225d5c91a7phpMyAdmin version 4.8 suffers from a cross site request forgery vulnerability.
220c6a5b7cb7addd970576332a54c199Wampserver versions 3.1.4 through 3.1.8 suffer from a cross site request forgery vulnerability.
371fb1ffa0f488be53a31b94a2d1e9e1Dlink DCS-1130 suffers from command injection, cross site request forgery, stack overflow, and various other vulnerabilities.
2740a7ddd36c75b0b15552c41ce5fa00Securifi Almond 2015 suffers from buffer overflow, command injection, cross site scripting, cross site request forgery, and various other vulnerabilities.
fca187f27d7bce4db13feb5f1b7ca238
© 2019 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed