2 matches found
CVE-2014-100025
Cross-site request forgery CSRF vulnerability in index.php/userdata/insertuser in Savsoft Quiz allows remote attackers to hijack the authentication of administrators for requests that create an administrator account via a crafted request...
CVE-2014-100025
CVE-2014-100025 corresponds to a Cross-site request forgery (CSRF) vulnerability in Savsoft Quiz, specifically in the endpoint index.php/user_data/insert_user. The flaw allows remote attackers to hijack administrator sessions by issuing crafted requests that create an administrator account, enabl...