CVE-2020-10540
Untis WebUntis before 2020.9.6 allows CSRF for certain combinations of rights and modules.
8.8CVSS
8.7AI Score
0.001EPSS
CVE-2020-22453
Untis WebUntis before 2020.9.6 allows XSS in multiple functions that store information.
6.1CVSS
5.9AI Score