A Cross-Site Request Forgery (CSRF) vulnerability exists in ProjectWorlds College Management System Php 1.0 that allows a remote attacker to modify, delete, or make a new entry of the student, faculty, teacher, subject, scores, location, and article data.
References
Link | Resource |
---|---|
https://github.com/olotieno/College-Management-System-Php/ | Product Third Party Advisory |
https://nikhilkumar01.medium.com/cve-2020-25408-97eb7bcc23a6 | Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2021-05-24T12:45:57
Updated: 2021-05-24T12:45:57
Reserved: 2020-09-14T00:00:00
Link: CVE-2020-25408
JSON object: View
NVD Information
Status : Analyzed
Published: 2021-05-24T13:15:07.453
Modified: 2021-05-27T21:23:41.547
Link: CVE-2020-25408
JSON object: View
Redhat Information
No data.
CWE