CVE-2022-47131

Description

A Cross-Site Request Forgery (CSRF) in Academy LMS before v5.10 allows an attacker to arbitrarily create a page.

Related CPE's

Could not find any relations

References

https://xpsec.co/blog/academy-lms-5-10-add-page-csrf-xss

https://portswigger.net/web-security/csrf

https://www.linkedin.com/in/xvinicius/

https://portswigger.net/web-security/csrf/xss-vs-csrf

https://blog.hackingforce.com.br/en/xss

CvssV3 impact

Could not find any metrics

CvssV2 impact

Could not find any metrics

Created by Yello

About Severity.io