8.9 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
40.6%
A Cross-Site Request Forgery (CSRF) in Academy LMS before v5.10 allows attackers to arbitrarily add Administrator users.
portswigger.net/web-security/csrf
www.linkedin.com/in/xvinicius/
xpsec.co/blog/academy-lms-5-10-add-admin-csrf