CVE-2022-1287
School Club Application System resource injection
A vulnerability classified as critical was found in School Club Application System 1.0. This vulnerability affects a request to the file /scas/classes/Users.php?f=save_user. The manipulation with a POST request leads to privilege escalation. The attack can be initiated remotely and does not require authentication. The exploit has been disclosed to the public and may be used.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
Produtos afetados
unspecified · School Club Application SystemQuer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →Referências
https://vuldb.com/?id.196750