CWE-352

Cross-Site Request Forgery (CSRF)

CompoundStableLikelihood: Medium

Description

The web application does not, or cannot, sufficiently verify whether a request was intentionally provided by the user who sent the request, which could have originated from an unauthorized actor.

Hierarchy (View 1000)

Parents

CWE-345

Children

none

Related attack patterns (CAPEC)

CAPEC-111 · CAPEC-462 · CAPEC-467 · CAPEC-62

CVEs mapped to this weakness (4,552)

page 13 of 228

CVE	Sev	Risk	CVSS	EPSS	Published	Description
CVE-2017-17905	Hig	0.57	8.8	0.00	Dec 27, 2017	PHP Scripts Mall Car Rental Script has CSRF via admin/sitesettings.php.
CVE-2017-17903	Hig	0.57	8.8	0.00	Dec 27, 2017	FS Lynda Clone has CSRF via user/edit_profile, as demonstrated by adding content to the user panel.
CVE-2017-17894	Hig	0.57	8.8	0.00	Dec 27, 2017	Readymade Job Site Script has CSRF via the /job URI.
CVE-2017-17891	Hig	0.57	8.8	0.00	Dec 27, 2017	Readymade Video Sharing Script has CSRF via user-profile-edit.php.
CVE-2017-17827	Hig	0.57	8.8	0.00	Dec 21, 2017	Piwigo 2.9.2 is vulnerable to Cross-Site Request Forgery via /admin.php?page=configuration&section=main or /admin.php?page=batch_manager&mode=unit. An attacker can exploit this to coerce an admin user into performing unintended actions.
CVE-2017-1746	Hig	0.57	8.8	0.00	Dec 20, 2017	IBM Jazz for Service Management (IBM Tivoli Components 1.1.3) is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM X-Force ID: 135519.
CVE-2017-1631	Hig	0.57	8.8	0.00	Dec 20, 2017	IBM Jazz for Service Management (IBM Tivoli Components 1.1.3) is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM X-Force ID: 133140.
CVE-2017-17774	Hig	0.57	8.8	0.00	Dec 20, 2017	admin/configuration.php in Piwigo 2.9.2 has CSRF.
CVE-2017-14092	Hig	0.57	8.8	0.00	Dec 16, 2017	The absence of Anti-CSRF tokens in Trend Micro ScanMail for Exchange 12.0 web interface forms could allow an attacker to submit authenticated requests when an authenticated user browses an attacker-controlled domain.
CVE-2017-17056	Hig	0.57	8.8	0.00	Dec 4, 2017	The ZKTime Web Software 2.0.1.12280 allows the Administrator to elevate the privileges of the application user using a 'password_change()' function of the Modify Password component, reachable via the old_password, new_password1, and new_password2 parameters to the /accounts/password_change/ URI. An attacker takes advantage of this scenario and creates a crafted CSRF link to add himself as an administrator to the ZKTime Web Software. He then uses social engineering methods to trick the administrator into clicking the forged HTTP request. The request is executed and the attacker becomes the Administrator of the ZKTime Web Software. If the vulnerability is successfully exploited, then an attacker (who would be a normal user of the web application) can escalate his privileges and become the administrator of ZKTime Web Software.
CVE-2016-10701	Hig	0.57	8.8	0.00	Nov 28, 2017	In Hitachi Vantara Pentaho BA Platform through 8.0, a CSRF issue exists in the Business Analytics application.
CVE-2017-8138	Hig	0.57	8.8	0.00	Nov 22, 2017	HedEx Earlier than V200R006C00 versions has a cross-site request forgery (CSRF) vulnerability. An attacker could trick a user into accessing a website containing malicious scripts which may tamper with configurations and interrupt normal services.
CVE-2017-15516	Hig	0.57	8.8	0.00	Nov 16, 2017	NetApp SnapCenter Server versions 1.1 through 2.x are susceptible to a Cross-Site Request Forgery (CSRF) vulnerability which could be used to cause an unintended authenticated action in the user interface.
CVE-2017-11876	Hig	0.57	8.8	0.01	Nov 15, 2017	Microsoft Project Server and Microsoft SharePoint Enterprise Server 2016 allow an attacker to use cross-site forgery to read content that they are not authorized to read, use the victim's identity to take actions on the web application on behalf of the victim, such as change permissions and delete content, and inject malicious content in the browser of the victim, aka "Microsoft Project Server Elevation of Privilege Vulnerability".
CVE-2017-16565	Hig	0.57	8.8	0.00	Nov 6, 2017	Cross-Site Request Forgery (CSRF) in /cgi-bin/login on Vonage (Grandstream) HT802 devices allows attackers to authenticate a user via the login screen using the default password of 123 and submit arbitrary requests.
CVE-2017-1300	Hig	0.57	8.8	0.00	Nov 1, 2017	IBM OpenPages GRC Platform 7.1, 7.2, and 7.3 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM X-Force ID: 125162.
CVE-2017-1000244	Hig	0.57	8.8	0.00	Nov 1, 2017	Jenkins Favorite Plugin version 2.2.0 and older is vulnerable to CSRF resulting in data modification
CVE-2012-4568	Hig	0.57	8.8	0.00	Oct 23, 2017	Multiple cross-site request forgery (CSRF) vulnerabilities in LetoDMS (formerly MyDMS) before 3.3.8 allow remote attackers to hijack the authentication of unspecified victims via unknown vectors.
CVE-2017-15733	Hig	0.57	8.8	0.00	Oct 22, 2017	In phpMyFAQ before 2.9.9, there is Cross-Site Request Forgery (CSRF) in admin/ajax.attachment.php and admin/att.main.php.
CVE-2017-15732	Hig	0.57	8.8	0.00	Oct 22, 2017	In phpMyFAQ before 2.9.9, there is Cross-Site Request Forgery (CSRF) in admin/news.php.

CVE-2017-17905HigDec 27, 2017
risk 0.57cvss 8.8epss 0.00
PHP Scripts Mall Car Rental Script has CSRF via admin/sitesettings.php.
CVE-2017-17903HigDec 27, 2017
risk 0.57cvss 8.8epss 0.00
FS Lynda Clone has CSRF via user/edit_profile, as demonstrated by adding content to the user panel.
CVE-2017-17894HigDec 27, 2017
risk 0.57cvss 8.8epss 0.00
Readymade Job Site Script has CSRF via the /job URI.
CVE-2017-17891HigDec 27, 2017
risk 0.57cvss 8.8epss 0.00
Readymade Video Sharing Script has CSRF via user-profile-edit.php.
CVE-2017-17827HigDec 21, 2017
risk 0.57cvss 8.8epss 0.00
Piwigo 2.9.2 is vulnerable to Cross-Site Request Forgery via /admin.php?page=configuration&section=main or /admin.php?page=batch_manager&mode=unit. An attacker can exploit this to coerce an admin user into performing unintended actions.
CVE-2017-1746HigDec 20, 2017
risk 0.57cvss 8.8epss 0.00
IBM Jazz for Service Management (IBM Tivoli Components 1.1.3) is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM X-Force ID: 135519.
CVE-2017-1631HigDec 20, 2017
risk 0.57cvss 8.8epss 0.00
IBM Jazz for Service Management (IBM Tivoli Components 1.1.3) is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM X-Force ID: 133140.
CVE-2017-17774HigDec 20, 2017
risk 0.57cvss 8.8epss 0.00
admin/configuration.php in Piwigo 2.9.2 has CSRF.
CVE-2017-14092HigDec 16, 2017
risk 0.57cvss 8.8epss 0.00
The absence of Anti-CSRF tokens in Trend Micro ScanMail for Exchange 12.0 web interface forms could allow an attacker to submit authenticated requests when an authenticated user browses an attacker-controlled domain.
CVE-2017-17056HigDec 4, 2017
risk 0.57cvss 8.8epss 0.00
The ZKTime Web Software 2.0.1.12280 allows the Administrator to elevate the privileges of the application user using a 'password_change()' function of the Modify Password component, reachable via the old_password, new_password1, and new_password2 parameters to the /accounts/password_change/ URI. An attacker takes advantage of this scenario and creates a crafted CSRF link to add himself as an administrator to the ZKTime Web Software. He then uses social engineering methods to trick the administrator into clicking the forged HTTP request. The request is executed and the attacker becomes the Administrator of the ZKTime Web Software. If the vulnerability is successfully exploited, then an attacker (who would be a normal user of the web application) can escalate his privileges and become the administrator of ZKTime Web Software.
CVE-2016-10701HigNov 28, 2017
risk 0.57cvss 8.8epss 0.00
In Hitachi Vantara Pentaho BA Platform through 8.0, a CSRF issue exists in the Business Analytics application.
CVE-2017-8138HigNov 22, 2017
risk 0.57cvss 8.8epss 0.00
HedEx Earlier than V200R006C00 versions has a cross-site request forgery (CSRF) vulnerability. An attacker could trick a user into accessing a website containing malicious scripts which may tamper with configurations and interrupt normal services.
CVE-2017-15516HigNov 16, 2017
risk 0.57cvss 8.8epss 0.00
NetApp SnapCenter Server versions 1.1 through 2.x are susceptible to a Cross-Site Request Forgery (CSRF) vulnerability which could be used to cause an unintended authenticated action in the user interface.
CVE-2017-11876HigNov 15, 2017
risk 0.57cvss 8.8epss 0.01
Microsoft Project Server and Microsoft SharePoint Enterprise Server 2016 allow an attacker to use cross-site forgery to read content that they are not authorized to read, use the victim's identity to take actions on the web application on behalf of the victim, such as change permissions and delete content, and inject malicious content in the browser of the victim, aka "Microsoft Project Server Elevation of Privilege Vulnerability".
CVE-2017-16565HigNov 6, 2017
risk 0.57cvss 8.8epss 0.00
Cross-Site Request Forgery (CSRF) in /cgi-bin/login on Vonage (Grandstream) HT802 devices allows attackers to authenticate a user via the login screen using the default password of 123 and submit arbitrary requests.
CVE-2017-1300HigNov 1, 2017
risk 0.57cvss 8.8epss 0.00
IBM OpenPages GRC Platform 7.1, 7.2, and 7.3 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM X-Force ID: 125162.
CVE-2017-1000244HigNov 1, 2017
risk 0.57cvss 8.8epss 0.00
Jenkins Favorite Plugin version 2.2.0 and older is vulnerable to CSRF resulting in data modification
CVE-2012-4568HigOct 23, 2017
risk 0.57cvss 8.8epss 0.00
Multiple cross-site request forgery (CSRF) vulnerabilities in LetoDMS (formerly MyDMS) before 3.3.8 allow remote attackers to hijack the authentication of unspecified victims via unknown vectors.
CVE-2017-15733HigOct 22, 2017
risk 0.57cvss 8.8epss 0.00
In phpMyFAQ before 2.9.9, there is Cross-Site Request Forgery (CSRF) in admin/ajax.attachment.php and admin/att.main.php.
CVE-2017-15732HigOct 22, 2017
risk 0.57cvss 8.8epss 0.00
In phpMyFAQ before 2.9.9, there is Cross-Site Request Forgery (CSRF) in admin/news.php.