RSS   Vulnerabilities for 'School-erp'   RSS

2019-07-04
 
CVE-2019-13294

CWE-284
 

 
AROX School-ERP Pro has a command execution vulnerability. import_stud.php and upload_fille.php do not have session control. Therefore an unauthenticated user can execute a command on the system.

 

 >>> Vendor: AROX 3 Products
School erp php script
School-erp
School management software php\/mysql


Copyright 2024, cxsecurity.com

 

Back to Top