xzs-mysql >= t3.4.0 is vulnerable to Insecure Permissions. The front end of this open source system is an online examination system. There is an unsafe vulnerability in the functional method of submitting examination papers. An attacker can use burpuite to modify parameters in the packet to destroy real data.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://github.com/mindskip/xzs-mysql/issues/327 |
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2022-01-25T15:42:23
Updated: 2024-08-04T05:02:10.258Z
Reserved: 2022-01-03T00:00:00
Link: CVE-2021-46086
Vulnrichment
No data.
NVD
Status : Modified
Published: 2022-01-25T16:15:08.967
Modified: 2024-11-21T06:33:37.290
Link: CVE-2021-46086
Redhat
No data.