CVE-2023-6766 | PHPGurukul Teacher Subject Allocation Management System 1.0 Delete Course /admin/course.php delid cross-site request forgery

Posted by Angelo Barbosa | Dec 13, 2023 | CVE

A vulnerability classified as problematic has been found in PHPGurukul Teacher Subject Allocation Management System 1.0. Affected is an unknown function of the file /admin/course.php of the component Delete Course Handler. The manipulation of the argument delid leads to cross-site request forgery.

This vulnerability is traded as CVE-2023-6766. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

CVE-2023-6766 | PHPGurukul Teacher Subject Allocation Management System 1.0 Delete Course /admin/course.php delid cross-site request forgery

Related Posts

CVE-2024-11455 | wolfgang101 Include Mastodon Feed Plugin up to 1.9.5 on WordPress Shortcode include-mastodon-feed cross site scripting

CVE-2024-38156 | Microsoft Edge up to 126.0.2592.81 cross site scripting

CVE-2024-4060 | Google Chrome prior 124.0.6367.78 Dawn use after free

CVE-2024-23513 | PropertyHive Plugin up to 2.0.5 on WordPress deserialization