xzs-mysql >= t3.4.0 is vulnerable to Insecure Permissions. The front end of this open source system is an online examination system. There is an unsafe vulnerability in the functional method of submitting examination papers. An attacker can use burpuite to modify parameters in the packet to destroy real data.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://github.com/mindskip/xzs-mysql/issues/327 |
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2022-01-25T15:42:23
Updated: 2024-08-04T05:02:10.258Z
Reserved: 2022-01-03T00:00:00
Link: CVE-2021-46086
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2022-01-25T16:15:08.967
Modified: 2022-01-31T20:04:36.447
Link: CVE-2021-46086
Redhat
No data.