Description

Cross-site request forgery in TCExam 14.2.2 allows a remote attacker to perform sensitive application actions by tricking legitimate users into clicking a crafted link.

Remediation

References

CVE-2020-5745

Related Vulnerabilities

Chamilo Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2023-4225)

WordPress Plugin WP-reCAPTCHA HTML Injection and Cross-Site Request Forgery Vulnerabilities (2.9.8.2)

WordPress Plugin Gutenberg Blocks by WordPress Download Manager Cross-Site Scripting (2.1.8)

PHP Improper Input Validation Vulnerability (CVE-2016-7417)

Jboss EAP Uncontrolled Resource Consumption Vulnerability (CVE-2016-8627)

Severity

High

Classification

CVE-2020-5745 CWE-707 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:H/A:N

Tags

Missing Update Known Vulnerabilities