CVE-2016-10883

The simple-add-pages-or-posts plugin before 1.7 for WordPress has CSRF for deleting users...

CVE-2016-10938

The copy-me plugin 1.0.0 for WordPress has CSRF for copying non-public posts to a public location...

CVE-2025-23113

An issue was discovered in REDCap 14.9.6. It has an action=myprojects=1 CSRF issue in the alert-title while performing an upload of a CSV file containing a list of alert configuration. An attacker can send the victim a CSV file containing an HTML injection payload in the alert-title. Once the...

CVE-2022-0914

The Export All URLs WordPress plugin before 4.3 does not have CSRF in place when exporting data, which could allow attackers to make a logged in admin export all posts and pages including private and draft into an arbitrary CSV file, which the attacker can then download and retrieve the list of...

CVE-2020-7988

An issue was discovered in tools/pass-change/result.php in phpIPAM 1.4. CSRF can be used to change the password of any user/admin, to escalate privileges, and to gain access to more data and functionality. This issue exists due to the lack of a requirement to provide the old password, and the lac...

CVE-2020-10241

An issue was discovered in Joomla! before 3.9.16. Missing token checks in the image actions of comtemplates lead to CSRF...

CVE-2019-7402

An issue was discovered in PHPMyWind 5.5. The GetQQ function in include/func.class.php allows XSS via the cfgqqcode parameter. This can be exploited via CSRF...

EUVD-2018-12794

Malware in sbrugna...

EUVD-2019-7921

Malware in sbrugna...

EUVD-2018-5350

Malware in sbrugna...

EUVD-2018-13154

Malware in sbrugna...

EUVD-2020-7174

Malware in sbrugna...

EUVD-2020-7860

Malware in sbrugna...

EUVD-2018-5387

Malware in sbrugna...

EUVD-2018-6253

Malware in sbrugna...

EUVD-2019-3091

Malware in sbrugna...

EUVD-2019-7824

Malware in sbrugna...

EUVD-2018-6848

Malware in sbrugna...

EUVD-2021-11923

Malware in sbrugna...

EUVD-2020-22827

Malware in sbrugna...