EUVD-2025-36595

Cross-Site Request Forgery CSRF vulnerability in Ays Pro Popup box allows Cross Site Request Forgery.This issue affects Popup box: from n/a through 5.5.4...

Security Bulletin: IBM FileNet Content Manager GraphQL Cross-site request forgery security vulnerability

Summary IBM FileNet Content Manager in GraphQL, there is a Cross-site request forgery security vulnerability. Vulnerability Details CVEID:CVE-2020-4745 DESCRIPTION: IBM FileNet Content Manager is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and...

PT-2024-11717 · Strategy11 · Formidable Forms

Name of the Vulnerable Software and Affected Versions: Formidable Forms versions n/a through 5.5.4 Description: The issue is related to a missing authorization vulnerability in Strategy11 Form Builder Team Formidable Forms, which allows exploiting incorrectly configured access control security...

GNUBOARD5 访问控制错误漏洞

GNUBOARD5 is a web forum system based on PHP and MySQL. A security vulnerability exists in GNUBOARD5 versions 5.5.4 and 5.5.5, which stems from the presence of insecure privileges and can be exploited by an attacker to change all users' passwords without knowing the victim's original password...

PT-2020-6319 · Vbulletin · Vbulletin

Name of the Vulnerable Software and Affected Versions: vBulletin versions 5.5.4 through 5.6.2 Description: The issue allows remote command execution via crafted subWidgets data in an "ajax/render/widget tabbedcontainer tab panel" request. This is due to an incomplete fix for a previous issue. The...

CVE-2019-17131

vBulletin before 5.5.4 allows clickjacking...