High severity8.8NVD Advisory· Published Apr 8, 2021· Updated Jun 17, 2026
CVE-2021-27522
CVE-2021-27522
Description
Learnsite 1.2.5.0 contains a remote privilege escalation vulnerability in /Manager/index.aspx through the JudgIsAdmin() function. By modifying the initial letter of the key of a user cookie, the key of the administrator cookie can be obtained.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Learnsite/Learnsitedescription
Patches
Vulnerability mechanics
References
1- github.com/WaterCountry/Learnsite/issues/1nvdExploitIssue TrackingThird Party Advisory
News mentions
0No linked articles in our index yet.