A Cross-Site Request Forgery (CSRF) vulnerability exists in ProjectWorlds College Management System Php 1.0 that allows a remote attacker to modify, delete, or make a new entry of the student, faculty, teacher, subject, scores, location, and article data.
References
Link | Resource |
---|---|
https://nikhilkumar01.medium.com/cve-2020-25408-97eb7bcc23a6 | Third Party Advisory |
https://github.com/olotieno/College-Management-System-Php/ | Product Third Party Advisory |
Configurations
Configuration 1 (hide)
|
Information
Published : 2021-05-24 06:15
Updated : 2021-05-27 14:23
NVD link : CVE-2020-25408
Mitre link : CVE-2020-25408
JSON object : View
CWE
CWE-352
Cross-Site Request Forgery (CSRF)
Products Affected
college_management_system_project
- college_management_system