Unrated severityNVD Advisory· Published Oct 23, 2019· Updated Aug 5, 2024
CVE-2019-18280
CVE-2019-18280
Description
Sourcecodester Online Grading System 1.0 is affected by a Cross Site Request Forgery vulnerability due to a lack of CSRF protection. This could lead to an attacker tricking the administrator into executing arbitrary code via a crafted HTML page, as demonstrated by a Create User action at the admin/modules/user/controller.php?action=add URI.
Affected products
2- Sourcecodester/Online Grading Systemdescription
- Range: = 1.0
Patches
Vulnerability mechanics
References
1- www.sevenlayers.com/index.php/261-online-grading-system-1-0-csrfmitrex_refsource_MISC
News mentions
0No linked articles in our index yet.