Lucene search
RcosSubmitty
2 matches found
CVE-2023-43194
Submitty before v22.06.00 is vulnerable to Incorrect Access Control. An attacker can delete any post in the forum by modifying request parameter.
5.3CVSS5.2AI score0.00236EPSS
CVE-2023-43193
Submitty before v22.06.00 is vulnerable to Cross Site Scripting (XSS). An attacker can create a malicious link in the forum that leads to XSS.
6.1CVSS6AI score0.00605EPSS