SOYAL Biometric Access Control System version 5.0 suffers from a cross site request forgery vulnerability.
93e556f6e1d9d2300afc6b657f1c1067ff56c303dec1b576e8ad9bba10eaa74c
Online News Portal version 1.0 suffers from cross site request forgery and cross site scripting vulnerabilities.
36546b8fdf46aff96e3dbb1b3966d5afab13e4fe2808a70bd0ac16799e6097cf
VestaCP version 0.9.8 suffers from a cross site request forgery that can be leveraged to add remote ssh access.
d8e5b5595824f47b497814f48567128c28abd86490a24820989a572b16eb6f54
OpenCMS version 11.0.2 suffers from cross site request forgery and open redirection vulnerabilities.
822b8f0065b6805f519eea0db3bdd50fbdac963c4b2fe17513fa35ed63ad0fbc
e107 CMS version 2.3.0 suffers from a cross site request forgery vulnerability.
2013ddfa8526bb4e33ae90cfcef37c362b7da19436c141db997f5e57104264f4
Microsoft Exchange Server has a flaw that exists within the HasValidCanary function inside of the Canary15 class. The issue results in an insecure generation of cross site request forgery tokens that can be used to install an office-addins. An attacker can leverage this vulnerability to escalate privileges to an administrative account.
ff865496e0bee101f53c29c316899cda3609c752370953dcd22a507052e91f6b
Apache MyFaces versions 2.2.13 and below, 2.3.7 and below, 2.3-next-M4 and below, and 2.1 and below suffer from a cross site request forgery vulnerability.
9496fb42b8d7b245393af79c43e00c9737bf7e2ce2f045cabe480e1ebae73876
Backdoor.Win32.Agent.aak malware suffers from code execution and cross site request forgery vulnerabilities.
07877b46ba2c779b236c2561cd70d8a9f3b6e327ed86d6f5a164b87adc2a81d0
Unibox version 2.4 suffers from remote code execution and cross site request forgery vulnerabilities.
8dd77b322f43636d3235c2c88700453adfa9865970ffd5dd3a39a083974ecbb8
Various Unibox products suffers from a cross site request forgery vulnerability.
b2ad463fe05cca881eb2aaa2883ee1d6b019cd543a3dfca94efb14e2e27c91e8
Pixelimity version 1.0 suffers from a cross site request forgery vulnerability.
56e487a336d7c4b8b5102a51dcfc718f025a925af3a9b40e3133b5fe6d7afae6
bloofoxCMS version 0.5.2.1 suffers from a cross site request forgery vulnerability.
1c18bed6d80622bf90a39e57e8150870f3b7070ddea00e80adaa02b2f07a69fe
STVS ProVision version 5.9.10 suffers from a cross site request forgery vulnerability.
bda8da5ba4074ffde06a720da61629ec99f9e38178e55525b86f31b97249e06a
MyBB Timeline plugin version 1.0 suffers from cross site request forgery and cross site scripting vulnerabilities.
bcfe1b8424be8bbee5ac13a528c0a59af9f53417b35d7b547b6dee50f2d8f6c4
Selea Targa IP OCR-ANPR Camera suffers from a cross site request forgery vulnerability that allows for adding an administrator. Multiple versions and firmwares are affected.
0e5e7a33fdb7ccd0c318840976f8d5c4b76c9123ba263c3dde836ea988c81259
Anchor CMS version 0.12.7 suffers from a cross site request forgery vulnerability.
2f75ad7082e071339ac57ce5a574de4d734e9ad408532c857a2f498ec69da3c0
Online Hotel Reservation System version 1.0 suffers from a cross site request forgery vulnerability.
c49c1da76edd9c2305cff54a31dc11fbf4989074dcee25f70f5167c1f15b9374
PHP-Fusion version 9.03.90 suffers from a cross site request forgery vulnerability.
e3cbe03265f3fd59ae2beb47eb8cd8d894c3dc1d155ac8ae7a8565e32ce238fd
Pepperl+Fuchs IO-Link Master Series with system version 1.36 and application version 1.5.28 suffers from command injection, cross site request forgery, cross site scripting, denial of service, and null pointer vulnerabilities.
c88a68158caf9f8c370f593f1564b9bdfdae8e3ee99f70f86114b5c91c83c7b8
OpenCart version 3.0.36 account takeover cross site request forgery exploit.
33efc2a3307d5283ee75ca4d38975eb63513ceae046e98c03956a79c9e78150b
Advanced Webhost Billing System version 3.7.0 suffers from a cross site request forgery vulnerability.
bc3eb51d27d3ddf82da984c0a0e9b5fcfaa7e62708458fba473d13c34d055205
Trend Micro InterScan Web Security Virtual Appliance (IWSVA) versions below 6.5 SP2 EN Patch 4 Build 1919 suffers from bypass, command execution, cross site request forgery, cross site scripting, and server-side request forgery vulnerabilities.
54396ecfd1b66aed9f010f421531333fb6ee5cf355c17da0019935bb3b4af762
Rukovoditel version 2.6.1 suffers from a cross site request forgery vulnerability.
f4650cf2d53f79ae23ab9f04c0ad2a6b05c7c27859d50e06f3d931d7aa3aaa17
OpenAsset Digital Asset Management suffers from a cross site request forgery vulnerability.
078180c0088a10bb5564b3436104fdcc80f9d53548b5cf7063cb5edac1d63305
OpenCart version 3.0.3.6 suffers from a cross site request forgery vulnerability.
15a4af089ee6938e9f9018d0cd512261bc37456c71fa0bf444ddfb50c1ad376f