Filter By Severity
CVESeverity     Type TypeSubjectDate DateAffected Versions Affected Versions
CVE-2021-32610Moderate

Cross-Site Request Forgery

CVE-2021-32610 php-pear: Directory traversal vulnerability

2021-07-30

CVE-2020-29004Low

Cross-Site Request Forgery

CVE-2020-29004 mediawiki: Missing edit token in ApiPushBase.php facilitates CSRF attacks

2021-01-29

CVE-2021-21702Low

Cross-Site Request Forgery

CVE-2021-21702 php: NULL pointer dereference in SoapClient

2021-01-26

7.3.0 - 7.3.26
7.3.0 - 7.3.26
7.3.0 - 7.3.26
7.3.0 - 7.3.26
7.3.0 - 7.3.26
7.3.0 - 7.3.26
7.3.0 - 7.3.26
CVE-2020-35131Low

Cross-Site Request Forgery

CVE-2020-35131 cockpit: registerCriteriaFunction in lib/MongoLite/Database.php allows for a Remote Command Execution via custom php code injection

2021-01-08

CVE-2020-7071Low

Cross-Site Request Forgery

CVE-2020-7071 php: FILTER_VALIDATE_URL accepts URLs with invalid userinfo

2021-01-03

5.6
5.6
5.6
5.6
5.6
5.6
5.6
CVE-2020-7068Low

Information Disclosure

CVE-2020-7068 php: Use of freed hash key in the phar_parse_zipfile function

2020-08-06

7.2.0 - 7.2.32
7.2.0 - 7.2.32
7.2.0 - 7.2.32
7.2.0 - 7.2.32
7.2.0 - 7.2.32
CVE-2020-14932Low

Cross-Site Request Forgery

CVE-2020-14932 squirrelmail: use of unserialize function for the mailtodata value in compose.php

2020-06-20

CVE-2020-14933Low

Cross-Site Request Forgery

CVE-2020-14933 squirrelmail: use of unserialize function for the attachments value in compose.php

2020-06-20

CVE-2020-7067Low

Cross-Site Request Forgery

out-of-bounds read when using a malformed url-encoded string

2020-04-10

7.2.0 - 7.2.29
7.2.0 - 7.2.29
7.2.0 - 7.2.29
7.2.0 - 7.2.29
CVE-2020-7064Low

Cross-Site Request Forgery

information disclosure in exif_read_data() function

2020-04-01

7.2.0 - 7.2.8
Page
Sort by severity
Sort by type
Sort by date
Sort by php versions affected