CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5 matches found

Positive Technologies•added 2026/03/28 12:0 a.m.•3 views

PT-2026-32987

Hackage CSRF vulnerability Vulnerable File: src/Distribution/Server/Features/Votes.hs example Impact: can forge requests through XSS hackage-server lacked Cross-Site Request Forgery CSRF protection across its endpoints. Scripts on foreign sites could trigger requests to hackage server, possibly...

9.6CVSS5.7AI score0.0002EPSS

Exploits0References5

OSV•added 2018/08/08 10:30 p.m.•14 views

GHSA-PXQR-8V54-M2HJ Cross-site request forgery in rails_admin

railsadmin ruby gem v1.1.1 is vulnerable to cross-site request forgery CSRF attacks. Non-GET methods were not validating CSRF tokens and, as a result, an attacker could hypothetically gain access to the application administrative endpoints exposed by the gem...

8.8CVSS8.8AI score0.00154EPSS

Exploits1References6

OSV•added 2018/07/05 4:29 p.m.•11 views

CVE-2016-10522

8.8CVSS7.4AI score

Exploits0References3

Prion•added 2018/07/05 4:29 p.m.•10 views

Cross site request forgery (csrf)

6.8CVSS7.3AI score0.00154EPSS

Exploits1References3Affected Software1

RubySec•added 2016/12/21 12:0 a.m.•14 views

CSRF vulnerability in rails_admin

The railsadmin gem is vulnerable to cross-site request forgery CSRF attacks. Due to a bug, non-GET methods were not validating CSRF tokens and, as a result, an attacker could hypothetically gain access to the application administrative endpoints exposed by the gem...

8.8CVSS2.4AI score0.00154EPSS

Exploits1References1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by