RSS   Vulnerabilities for 'Online lesson booking'   RSS

2019-07-05
 
CVE-2019-5973

CWE-352
 
 
Cross-site request forgery (CSRF) vulnerability in Online Lesson Booking 0.8.6 and earlier allows remote attackers to hijack the authentication of administrators via unspecified vectors.

 
 
CVE-2019-5972

CWE-79
 
 
Cross-site scripting vulnerability in Online Lesson Booking 0.8.6 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

 

 >>> Vendor: Sukimalab 2 Products
Attendance manager
Online lesson booking

Copyright 2024, cxsecurity.com

 

Back to Top