Description

Cross-site request forgery in TCExam 14.2.2 allows a remote attacker to perform sensitive application actions by tricking legitimate users into clicking a crafted link.

Remediation

References

CVE-2020-5745

Related Vulnerabilities

MySQL CVE-2014-6520 Vulnerability (CVE-2014-6520)

WordPress Plugin Email Before Download SQL Injection (6.7)

MySQL CVE-2022-21318 Vulnerability (CVE-2022-21318)

WordPress Plugin Booking Calendar Directory Traversal (7.0)

WordPress Ultimate Member Plugin Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2022-3361)

Severity

High

Classification

CVE-2020-5745 CWE-707 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:H/A:N

Tags

Missing Update Known Vulnerabilities