RSS   Vulnerabilities for 'Universis-students'   RSS

2022-05-18
 
CVE-2022-28924

CWE-668
 

 
An information disclosure vulnerability in UniverSIS-Students before v1.5.0 allows attackers to obtain sensitive information via a crafted GET request to the endpoint /api/students/me/courses/.

 


Copyright 2024, cxsecurity.com

 

Back to Top