Description
A Cross-Site Request Forgery (CSRF) in Academy LMS before v5.10 allows attackers to arbitrarily add Administrator users.
Analysis
No analysis available yet.
Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).
| Vendor | Product | Default status | Versions | ||||||
|---|---|---|---|---|---|---|---|---|---|
| n/a | n/a | affected |
|
No data.
No data available yet.
Remediation
No remediation available yet.
Tracking
Sign in to view the affected projects.
Advisories
| Source | ID | Title |
|---|---|---|
 EUVD |
EUVD-2022-49907 | A Cross-Site Request Forgery (CSRF) in Academy LMS before v5.10 allows attackers to arbitrarily add Administrator users. |
References
History
Tue, 15 Jul 2025 13:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
epss
|
epss
|
MITRE
Status: PUBLISHED
Assigner: mitre
Published:
Updated: 2024-08-03T14:47:28.559Z
Reserved: 2022-12-12T00:00:00.000Z
Link: CVE-2022-47132
Vulnrichment
No data.
NVD
Status : Modified
Published: 2023-02-03T01:15:13.043
Modified: 2024-11-21T07:31:33.443
Link: CVE-2022-47132
Redhat
No data.
OpenCVE Enrichment
No data.
Weaknesses