Описание
A Cross-Site Request Forgery (CSRF) vulnerability in the manage-students.php component of PHPGurukul Student Record System v3.2 allows an attacker to trick an authenticated administrator into submitting a forged request. This leads to the unauthorized deletion of user accounts, causing a Denial of Service (DoS).
Ссылки
- ExploitThird Party Advisory
- Product
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:phpgurukul:student_record_system:3.2:*:*:*:*:*:*:*
EPSS
Процентиль: 10%
0.00034
Низкий
7.5 High
CVSS3
Дефекты
CWE-352
Связанные уязвимости
CVSS3: 7.5
github
3 месяца назад
A Cross-Site Request Forgery (CSRF) vulnerability in the manage-students.php component of PHPGurukul Student Record System v3.2 allows an attacker to trick an authenticated administrator into submitting a forged request. This leads to the unauthorized deletion of user accounts, causing a Denial of Service (DoS).
EPSS
Процентиль: 10%
0.00034
Низкий
7.5 High
CVSS3
Дефекты
CWE-352