VYPR

Learnsite

by Learnsite

CVEs (1)

  • CVE-2021-27522HigApr 8, 2021
    risk 0.57cvss 8.8epss 0.01

    Learnsite 1.2.5.0 contains a remote privilege escalation vulnerability in /Manager/index.aspx through the JudgIsAdmin() function. By modifying the initial letter of the key of a user cookie, the key of the administrator cookie can be obtained.