CVE-2019-10011

2019-03-2518:07:07

mitre

www.cve.org

9.5 High

AI Score

Confidence

High

0.012 Low

EPSS

Percentile

85.4%

JSON

ICS/StaticPages/AddTestUsers.aspx in Jenzabar JICS (aka Internet Campus Solution) before 2019-02-06 allows remote attackers to create an arbitrary number of accounts with a password of 1234.

References

medium.com/%40mdavis332/higher-ed-erp-portal-vulnerability-create-your-own-accounts-d865bd22cdd8