Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-352 (跨站请求伪造(CSRF)) — Vulnerability Class 4751

4751 vulnerabilities classified as CWE-352 (跨站请求伪造(CSRF)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2020-1977 Expedition Migration Tool: Insufficient Cross Site Request Forgery protection. — Expedition 7.5 High2020-02-12
CVE-2019-3864 Red Hat Quay 跨站请求伪造漏洞 — quay 8.8 -2020-01-21
CVE-2020-5397 CSRF Attack via CORS Preflight Requests with Spring MVC or Spring WebFlux — Spring Framework 8.1 -2020-01-17
CVE-2019-18271 OSIsoft PI Vision 跨站请求伪造漏洞 — OSIsoft PI Vision 8.8 -2020-01-15
CVE-2019-17633 Eclipse Che 跨站请求伪造漏洞 — Eclipse Che 8.8 -2019-12-19
CVE-2019-13930 Siemens XHQ Operations Intelligence 跨站请求伪造漏洞 — XHQ 8.1 -2019-12-12
CVE-2019-16002 Cisco SD-WAN Solution vManage Cross-Site Request Forgery Vulnerability — Cisco vManage Software 8.8 -2019-11-26
CVE-2019-12636 Cisco Small Business Smart and Managed Switches Cross-Site Request Forgery Vulnerability — Cisco Small Business 250 Series Smart Switches Software 8.8 -2019-10-16
CVE-2019-13529 SMA Solar Technology Sunny WebBox 跨站请求伪造漏洞 — Sunny WebBox 8.8 -2019-10-09
CVE-2019-1915 Multiple Cisco Unified Communications Products Cross-Site Request Forgery Vulnerability — Cisco Unified Communications Manager 8.1 -2019-10-02
CVE-2019-13920 Siemens SINEMA Remote Connect Server 跨站请求伪造漏洞 — SINEMA Remote Connect Server 4.3 -2019-09-13
CVE-2019-12624 Cisco IOS XE NGWC Legacy Wireless Device Manager GUI Cross-Site Request Forgery Vulnerability — Cisco IOS XE Software 8.8 -2019-08-21
CVE-2019-10199 红帽 Red Hat Keycloak 跨站请求伪造漏洞 — keycloak 8.8 -2019-08-14
CVE-2019-1958 Cisco HyperFlex Software Cross-Site Request Forgery Vulnerability — Cisco HyperFlex HX-Series 8.8 -2019-08-08
CVE-2019-10176 Red Hat OpenShift Container Platform 跨站请求伪造漏洞 — atomic-openshift 6.3 -2019-08-02
CVE-2019-10186 Moodle 跨站请求伪造漏洞 — moodle 8.1 -2019-07-31
CVE-2019-1904 Cisco IOS XE Software Web UI Cross-Site Request Forgery Vulnerability — Cisco IOS XE Software 8.8 -2019-06-21
CVE-2019-1874 Cisco Prime Service Catalog Cross-Site Request Forgery Vulnerability — Cisco Prime Service Catalog 8.8 -2019-06-20
CVE-2019-1632 Cisco Integrated Management Controller Cross-Site Request Forgery Vulnerability — Cisco Unified Computing System (Management Software) 8.0 -2019-06-20
CVE-2019-1881 Cisco Industrial Network Director Cross-Site Request Forgery Vulnerability — Cisco Industrial Network Director 8.8 -2019-06-05
CVE-2019-9882 Multi modules of MailSherlock MSR35 and MSR45 lead to a CSRF vulnerability. It allows attacker to add malicious email sources into whitelist. — MailSherlock MSR35 8.8 -2019-06-03
CVE-2019-9883 Multi modules of MailSherlock MSR35 and MSR45 lead to a CSRF vulnerability. It allows attacker to elevate privilege of specific account. — MailSherlock MSR35 8.8 -2019-06-03
CVE-2018-4066 Sierra Wireless AirLink ES450 跨站请求伪造漏洞 — Sierra Wireless 8.8 -2019-05-06
CVE-2019-5430 UniFi Video 跨站请求伪造漏洞 — UniFi Video Server 8.8 -2019-05-06
CVE-2019-5431 Twitter Kit for iOS 信任管理问题漏洞 — Twitter Kit for iOS 5.4 -2019-05-06
CVE-2019-1857 Cisco HyperFlex HX-Series Web-Based Management Interface Cross-Site Request Forgery Vulnerability — Cisco HyperFlex HX-Series 8.8 -2019-05-03
CVE-2019-1713 Cisco Adaptive Security Appliance Software Cross-Site Request Forgery Vulnerability — Cisco Adaptive Security Appliance (ASA) Software 8.8 -2019-05-03
CVE-2015-9284 OmniAuth Ruby gem 跨站请求伪造漏洞 — omniauth ruby gem 8.8 -2019-04-26
CVE-2019-1797 Cisco Wireless LAN Controller Software Cross-Site Request Forgery Vulnerability — Cisco Wireless LAN Controller (WLC) 8.8 -2019-04-18
CVE-2019-1722 Cisco Expressway Series and Cisco TelePresence Video Communication Server Cross-Site Request Forgery Vulnerability — Cisco TelePresence Video Communication Server (VCS) 8.8 -2019-04-18

Vulnerabilities classified as CWE-352 (跨站请求伪造(CSRF)) represent 4751 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.