CSRF - CVE CyberSecurity Database News

Feb 21, 2025 CSRF Exploit

CVE-2025-25770 - Wangmarket v4.10 to v5. Cross-Site Request Forgery (CSRF) vulnerability in AgencyUserController.java

The National Vulnerability Database (NVD) has recently published a new vulnerability with the identifier CVE-2025-25770. This vulnerability affects the popular Wangmarket e-commerce platform, specifically versions

Feb 13, 2025 CSRF PHP

CVE-2024-56908: Perfex CRM < 3.2.1 Vulnerability Allows Authenticated Attackers to Upload Arbitrary Files via upload_sales_file Endpoint

A cybersecurity vulnerability (CVE-2024-56908) has been discovered in Perfex CRM versions older than 3.2.1. In this post, we'll provide a detailed

Feb 11, 2025 CSRF Jira

CVE-2019-15002: Understanding the Exploitable CSRF Vulnerability in Atlassian Jira Versions 7.6.4 to 8.1.

Atlassian Jira is a popular web-based project management and issue tracking platform, widely used by software teams to manage their backlog, sprints, and releases. It

Feb 6, 2025 CSRF XSS WordPress

CVE-2025-0522: Critical Vulnerability in LikeBot WordPress Plugin - Stored XSS via CSRF

WordPress is a popular CMS that powers numerous websites worldwide. With its vast ecosystem of plugins and themes, it's no surprise that security

Feb 3, 2025 CSRF XSS Exploit

CVE-2024-56903: Geovision GV-ASWeb Version 6.1.1. and Below Allows Attackers to Modify POST to GET for Critical Functionalities and Exploiting CSRF Attacks

CVE-2024-56903 is a critical vulnerability affecting Geovision GV-ASWeb with version 6.1.1. or less. This vulnerability allows attackers to modify a POST request method