2 matches found
CVE-2022-31164
CVE-2022-31164 affects Tovy, a staff management system for Roblox groups. In versions prior to 0.7.51, the authentication/authorization flow allows a user to log in as another user, including privileged accounts, enabling impersonation. The issue is resolved by upgrading to version 0.7.51 or late...
Arbitrary File Upload Vulnerability in Staff Management System of Guangzhou Zhongda Dongri Technical Education Co.
Guangzhou Zhongda Dongri Technology Education Co. Ltd. specializes in the development and sales of educational technology. This product is a faculty management system. An arbitrary file upload vulnerability exists in the Faculty and Staff Management System of Guangzhou CUHK Dongri Technology...