2 matches found
CVE-2020-28403
The CVE-2020-28403 entry concerns Star Practice Management Web (v2019.2.0.6) and describes a Cross-Site Request Forgery (CSRF) vulnerability that can allow an attacker to change privileges for any user, including granting themselves admin or removing an admin account. The provided connected docum...
CVE-2020-28403
A Cross-Site Request Forgery CSRF vulnerability exists in Star Practice Management Web version 2019.2.0.6, allowing an attacker to change the privileges of any user of the application. This can be used to grant himself administrative role or remove the administrative account of the application...