Vulnerability Category - 跨站请求伪造 - CSRF

Vulnerability Category — CSRF

Detail：: 跨站请求伪造（Cross-site request forgery），也被称为one-click attack或者session riding，通常缩写为CSRF或者XSRF，是一种挟制用户在当前已登录的Web应用程序上执行非本意的操作的攻击方法。

SSV ID	Submit Time	Name	Popularity \| Comments
SSV-12616	2009-11-11	Harris Stratex StarMAX subscriber station running config CSRF exploit	813 \| 0
SSV-11837	2009-07-20	sablog1.6的CSRF漏洞POC	1690 \| 0
SSV-11048	2009-04-18	Limbo CMS 1.0.4.2 CSRF Privilege Escalation PoC	824 \| 0
SSV-10518	2009-02-02	Siemens ADSL SL2-141 CSRF Exploit	886 \| 0
SSV-10530	2009-02-02	Zoom VoIP Phone Adapater ATA1+1 1.2.5 XSRF Exploit	820 \| 0
SSV-4633	2009-01-08	PHPWIND & DISCUZ! CSRF漏洞	1336 \| 0
SSV-10369	2009-01-02	EggBlog 3.1.10 Change Admin Pass CSRF Vulnerability	811 \| 0
SSV-10311	2008-12-24	PHPmotion <= 2.1 CSRF Vulnerability	888 \| 0
SSV-17634	2008-12-15	BabbleBoard 1.1.6 (username) CSRF/Cookie Grabber Exploit	2372 \| 0
SSV-10198	2008-12-09	DD-WRT v24-sp1 (XSRF) Cross Site Reference Forgery Exploit	930 \| 0
SSV-10062	2008-11-19	CUPS 1.3.7 CSRF (add rss subscription) Remote Crash Exploit	1424 \| 0
SSV-4390	2008-11-04	Discuz! flash csrf vul	823 \| 0
SSV-9556	2008-09-24	Sagem Routers F@ST Remote CSRF Exploit (dhcp hostname attack)	968 \| 0
SSV-9529	2008-09-18	Cisco Router HTTP Administration CSRF Command Execution Exploit 2	1083 \| 0
SSV-9528	2008-09-18	Cisco Router HTTP Administration CSRF Command Execution Exploit	909 \| 0
SSV-1058	2006-12-27	phpMyAdmin多个CSRF漏洞	1374 \| 0