3 matches found
CVE-2023-36256
creationtimestamp| type| source ---|---|--- 2023-07-07 22:17:57+00:00| seen| https://t.me/cibsecurity/66225...
CVE-2023-36256
The Online Examination System Project 1.0 version is vulnerable to Cross-Site Request Forgery CSRF attacks. An attacker can craft a malicious link that, when clicked by an admin user, will delete a user account from the database without the admin's consent. The email of the user to be deleted is...
CVE-2023-36256
CVE-2023-36256 affects The Online Examination System Project 1.0. The vulnerability is a CSRF flaw where an attacker can craft a malicious link that, when clicked by an admin, deletes a user account from the database via a URL parameter (email). This can cause data loss and does not require admin...