| Titel | code-projects School Fees Payment System 1.0 Cross-Site Request Forgery |
|---|
| Beschreibung | During security assessment of "School Fees Payment System", a CSRF vulnerability was discovered in all functionalities that modify the system status and user data. The system lacks CSRF protection mechanisms, enabling attackers to forge malicious requests that execute privileged actions via authenticated victims' browsers. Immediate implementation of anti-CSRF measures is required to prevent unauthorized operations. |
|---|
| Quelle | ⚠️ https://github.com/tuooo/CVE/issues/15 |
|---|
| Benutzer | DS_Leo (UID 86084) |
|---|
| Einreichung | 14.06.2025 12:37 (vor 10 Monaten) |
|---|
| Moderieren | 19.06.2025 12:34 (5 days later) |
|---|
| Status | Akzeptiert |
|---|
| VulDB Eintrag | 313336 [code-projects School Fees Payment System 1.0 Cross Site Request Forgery] |
|---|
| Punkte | 19 |
|---|