8 matches found
EUVD-2021-17052
Malware in sbrugna...
CVE-2021-30112
Web-School ERP V 5.0 contains a cross-site request forgery CSRF vulnerability that allows a remote attacker to create a studentleaveapplication request through module/core/studentleaveapplication/create. The application fails to validate the CSRF token for a POST request using Guardian privilege...
Web-School ERP Cross-Site Request Forgery Vulnerability (CNVD-2021-28279)
Web-School ERP is a school management software for schools and educational organizations. A cross-site request forgery vulnerability exists in Web-School ERP version 5.0. An attacker can exploit this vulnerability to create a studentleaveapplication request via...
CVE-2021-30112
Web-School ERP V 5.0 contains a cross-site request forgery CSRF vulnerability that allows a remote attacker to create a studentleaveapplication request through module/core/studentleaveapplication/create. The application fails to validate the CSRF token for a POST request using Guardian privilege...
Cross site request forgery (csrf)
Web-School ERP V 5.0 contains a cross-site request forgery CSRF vulnerability that allows a remote attacker to create a studentleaveapplication request through module/core/studentleaveapplication/create. The application fails to validate the CSRF token for a POST request using Guardian privilege...
CVE-2021-30112
Web-School ERP V 5.0 contains a cross-site request forgery CSRF vulnerability that allows a remote attacker to create a studentleaveapplication request through module/core/studentleaveapplication/create. The application fails to validate the CSRF token for a POST request using Guardian privilege...
CVE-2021-30112
CVE-2021-30112 affects Web-School ERP v5.0. The vulnerability is a cross-site request forgery (CSRF) in module/core/studentleaveapplication/create where the application fails to validate the CSRF token for POST requests using Guardian privilege, allowing remote creation of a student_leave_applica...
Web-School ERP 跨站请求伪造漏洞
Web-School ERP is a school management software for schools and educational organizations. A cross-site request forgery vulnerability exists in Web-School ERP version 5.0. An attacker can exploit this vulnerability to create a studentleaveapplication request via...