CVE-2021-30112 – Web-School ERP V 5.0 contains a cross-site request forgery (CSRF) vulnerability that allow …

8 April 2021

Vuln ID: CVE-2021-30112

Published: 2021-04-08 12:15:12Z

Description: Web-School ERP V 5.0 contains a cross-site request forgery (CSRF) vulnerability that allows a remote attacker to create a student_leave_application request through module/core/studentleaveapplication/create. The application fails to validate the CSRF token for a POST request using Guardian privilege.

Source: NVD.NIST.GOV

Date:

8 April 2021

Categorie(s):

NVD

Tag(s):

NVD

GStreamer 1.24.3 Enhances Stability and Security in Latest Update30 April 2024
Where does your software (really) come from?30 April 2024
Navigating the cybersecurity career maze30 April 2024
The ransomware dilemma: Analyzing the interplay between AI and modern data protection30 April 2024
Strengthening cyber resilience: Dell’s next-gen data protection technology30 April 2024