Search

Use the Query Builder to create your own search query, or check out the documentation to learn the search syntax.

Search Examples

CVEs in KEV CVEs with EPSS >= 80% Crit. Microsoft High Apache SQL Injection (CWE-89) Linux Kernel High (CVSS 3.1) Apache Struts RCE (Remote Code Execution) XSS (CWE-79) Critical (CVSS 4.0) CVEs to check

Search Results (8635 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-2023-28989 1 Wedevs 1 Happy Addons For Elementor 2024-11-21 4.3 Medium
Cross-Site Request Forgery (CSRF) vulnerability in weDevs Happy Addons for Elementor plugin <= 3.8.2 versions.
CVE-2023-28987 1 Wpmet 1 Wp Ultimate Review 2024-11-21 4.3 Medium
Cross-Site Request Forgery (CSRF) vulnerability in Wpmet Wp Ultimate Review plugin <= 2.0.3 versions.
CVE-2023-28986 1 Wpaffiliatemanager 1 Affiliates Manager 2024-11-21 5.4 Medium
Cross-Site Request Forgery (CSRF) vulnerability in wp.Insider, wpaffiliatemgr Affiliates Manager plugin <= 2.9.20 versions.
CVE-2023-28949 1 Ibm 2 Engineering Requirements Management Doors, Engineering Requirements Management Doors Web Access 2024-11-21 6.5 Medium
IBM Engineering Requirements Management DOORS 9.7.2.7 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM X-Force ID: 251216.
CVE-2023-28930 1 Robinphillips 1 Mobile Banner 2024-11-21 4.3 Medium
Cross-Site Request Forgery (CSRF) vulnerability in Robin Phillips Mobile Banner plugin <= 1.5 versions.
CVE-2023-28791 1 Webtechforce 1 Simple Org Chart 2024-11-21 4.3 Medium
Cross-Site Request Forgery (CSRF) vulnerability in Gangesh Matta Simple Org Chart plugin <= 2.3.4 versions.
CVE-2023-28780 1 Yoast 1 Yoast Local Seo 2024-11-21 6.5 Medium
Cross-Site Request Forgery (CSRF) vulnerability in Yoast Yoast Local Premium.This issue affects Yoast Local Premium: from n/a through 14.8.
CVE-2023-28749 1 Cminds 1 Cm On Demand Search And Replace 2024-11-21 4.3 Medium
Cross-Site Request Forgery (CSRF) vulnerability in CreativeMindsSolutions CM On Demand Search And Replace plugin <= 1.3.0 versions.
CVE-2023-28747 1 Codeboxr 1 Cbx Currency Converter 2024-11-21 5.4 Medium
Cross-Site Request Forgery (CSRF) vulnerability in codeboxr CBX Currency Converter plugin <= 3.0.3 versions.
CVE-2023-28696 1 Themeist 1 I Recommend This 2024-11-21 4.3 Medium
Cross-Site Request Forgery (CSRF) vulnerability in Harish Chouhan, Themeist I Recommend This allows Cross Site Request Forgery.This issue affects I Recommend This: from n/a through 3.9.0.
CVE-2023-28694 1 Wbcomdesigns 1 Buddypress Activity Social Share 2024-11-21 5.4 Medium
Cross-Site Request Forgery (CSRF) vulnerability in Wbcom Designs Wbcom Designs – BuddyPress Activity Social Share plugin <= 3.5.0 versions.
CVE-2023-28618 1 Infolific 1 Enhanced Plugin Admin 2024-11-21 5.4 Medium
Cross-Site Request Forgery (CSRF) vulnerability in Marios Alexandrou Enhanced Plugin Admin plugin <= 1.16 versions.
CVE-2023-28498 1 Motopress 1 Hotel Booking Lite 2024-11-21 4.3 Medium
Cross-Site Request Forgery (CSRF) vulnerability in MotoPress Hotel Booking Lite plugin <= 4.6.0 versions.
CVE-2023-28497 1 Tribulant 1 Slideshow Gallery 2024-11-21 5.4 Medium
Cross-Site Request Forgery (CSRF) vulnerability in Tribulant Slideshow Gallery LITE plugin <= 1.7.6 versions.
CVE-2023-28495 1 Mythemeshop 1 Wp Shortcode 2024-11-21 4.3 Medium
Cross-Site Request Forgery (CSRF) vulnerability in MyThemeShop WP Shortcode by MyThemeShop plugin <= 1.4.16 versions.
CVE-2023-28420 1 Leocaseiro 1 Custom Options Plus 2024-11-21 5.4 Medium
Cross-Site Request Forgery (CSRF) vulnerability in Leo Caseiro Custom Options Plus plugin <= 1.8.1 versions.
CVE-2023-28419 1 Strangerstudios 1 Force Display Name 2024-11-21 5.4 Medium
Cross-Site Request Forgery (CSRF) vulnerability in Stranger Studios Force First and Last Name as Display Name plugin <= 1.2 versions.
CVE-2023-28335 1 Moodle 1 Moodle 2024-11-21 8.8 High
The link to reset all templates of a database activity did not include the necessary token to prevent a CSRF risk.
CVE-2023-28167 1 Vsourz 1 Cf7 Invisible Recaptcha 2024-11-21 5.4 Medium
Cross-Site Request Forgery (CSRF) vulnerability in Vsourz Digital CF7 Invisible reCAPTCHA plugin <= 1.3.3 versions.
CVE-2023-28023 1 Hcltech 1 Bigfix Webui 2024-11-21 4.9 Medium
A cross site request forgery vulnerability in the BigFix WebUI Software Distribution interface site version 44 and before allows an NMO attacker to access files on server side systems (server machine and all the ones in its network).