2024-03-07 00:00:00
mitre
PUBLISHED
An issue in Online Diagnostic Lab Management System 1.0 allows a remote attacker to gain control of a Staff user account via a crafted POST request using the id, email, password, and cpass parameters.