Security Advisory

CVE-2015-1583

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-03-02 15:50:35

Last updated 2024-08-06 04:47:17

Assigner mitre

State PUBLISHED

Description

Multiple cross-site request forgery (CSRF) vulnerabilities in ATutor 2.2 allow remote attackers to hijack the authentication of administrators for requests that (1) create an administrator account via a request to mods/_core/users/admins/create.php or (2) create a user account via a request to mods/_core/users/create_user.php.

← Browse all CVEs View on cve.org ↗