Untis WebUntis before 2020.9.6 allows CSRF for certain combinations of rights and modules.
References
Link | Resource |
---|---|
https://help.untis.at/hc/de/articles/360008456699-WebUntis-Release-Notes | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2020-03-13T05:25:16
Updated: 2020-03-13T05:25:16
Reserved: 2020-03-13T00:00:00
Link: CVE-2020-10540
JSON object: View
NVD Information
Status : Analyzed
Published: 2020-03-13T06:15:11.110
Modified: 2020-03-18T15:19:55.327
Link: CVE-2020-10540
JSON object: View
Redhat Information
No data.
CWE