CWE-352 CVEs and Security Vulnerabilities

Filtered by CWE-352

Search

Switch to Advanced Search (Beta)

Total 7460 CVE

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2024-42768	1 Kashipara	1 Hotel Management	2024-08-23	6.8 Medium
A Cross-Site Request Forgery (CSRF) vulnerability was found in Kashipara Hotel Management System v1.0 via /admin/delete_room.php.
CVE-2024-42764	1 Kashipara	1 Bus Ticket Reservation System	2024-08-23	9.4 Critical
Kashipara Bus Ticket Reservation System v1.0 is vulnerable to Cross Site Request Forgery (CSRF) via /deleteTicket.php.
CVE-2024-40886	1 Mattermost	1 Mattermost	2024-08-23	4.6 Medium
Mattermost versions 9.9.x <= 9.9.1, 9.5.x <= 9.5.7, 9.10.x <= 9.10.0, 9.8.x <= 9.8.2 fail to sanitize user inputs in the frontend that are used for redirection which allows for a one-click client-side path traversal that is leading to CSRF in User Management page of the system console.
CVE-2024-39744	3 Ibm, Linux, Microsoft	5 Aix, Sterling Connect, Sterling Connect Direct Web Services and 2 more	2024-08-23	4.3 Medium
IBM Sterling Connect:Direct Web Services 6.0, 6.1, 6.2, and 6.3 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts.
CVE-2024-42604	1 Pligg	1 Pligg Cms	2024-08-21	8.8 High
Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/admin_group.php?mode=delete&group_id=3
CVE-2024-42608	1 Pligg	1 Pligg Cms	2024-08-21	8.8 High
Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/submit_page.php.
CVE-2024-42579	1 Siamonhasan	1 Warehouse Inventory System	2024-08-21	8.8 High
A Cross-Site Request Forgery (CSRF) in the component add_group.php of Warehouse Inventory System v2.0 allows attackers to escalate privileges.
CVE-2024-42612	1 Pigg	1 Cms	2024-08-21	8.8 High
Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/domain_management.php?whitelist_add
CVE-2024-42577	1 Siamonhasan	1 Warehouse Inventory System	2024-08-21	8.8 High
A Cross-Site Request Forgery (CSRF) in the component add_product.php of Warehouse Inventory System v2.0 allows attackers to escalate privileges.
CVE-2024-42580	2 Oswapp, Siamonhasan	2 Warehouse Inventory System, Warehouse Inventory System	2024-08-21	5.7 Medium
A Cross-Site Request Forgery (CSRF) in the component edit_group.php of Warehouse Inventory System v2.0 allows attackers to escalate privileges.
CVE-2024-42581	2 Oswapp, Siamonhasan	2 Warehouse Inventory System, Warehouse Inventory System	2024-08-21	9.6 Critical
A Cross-Site Request Forgery (CSRF) in the component delete_group.php of Warehouse Inventory System v2.0 allows attackers to escalate privileges.
CVE-2024-42582	1 Siamonhasan	1 Warehouse Inventory System	2024-08-21	8.8 High
A Cross-Site Request Forgery (CSRF) in the component delete_categorie.php of Warehouse Inventory System v2.0 allows attackers to escalate privileges.
CVE-2024-42583	2 Siamonhasan, Warehouse Inventory System	2 Warehouse Inventory System, Warehouse Inventory System	2024-08-21	8.8 High
A Cross-Site Request Forgery (CSRF) in the component delete_user.php of Warehouse Inventory System v2.0 allows attackers to escalate privileges.
CVE-2024-42603	1 Pligg	1 Pligg Cms	2024-08-21	5.7 Medium
Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/admin_backup.php?dobackup=clearall
CVE-2024-42605	1 Pligg	1 Pligg Cms	2024-08-21	7.1 High
Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/edit_page.php?link_id=1
CVE-2024-42606	1 Pligg	1 Pligg Cms	2024-08-21	5.7 Medium
Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/admin_log.php?clear=1
CVE-2024-42607	1 Pligg	1 Pligg Cms	2024-08-21	8.8 High
Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/admin_backup.php?dobackup=database
CVE-2024-42609	1 Pligg	1 Pligg Cms	2024-08-21	7.1 High
Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/admin_backup.php?dobackup=avatars
CVE-2024-42610	1 Pligg	1 Pligg Cms	2024-08-21	8.8 High
Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/admin_backup.php?dobackup=files
CVE-2024-42611	2 Kliqqi, Pligg	2 Kliqqi Cms, Pligg Cms	2024-08-21	8.8 High
Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery (CSRF) via admin/admin_page.php?link_id=1&mode=delete

« first previous Page 371 of 373. next last »