Vulnerabilities (CVE)

Filtered by vendor Arox Subscribe
Filtered by product School Management Software Php\/mysql
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2020-8505 1 Arox 1 School Management Software Php\/mysql 2023-12-10 4.3 MEDIUM 6.5 MEDIUM
School Management Software PHP/mySQL through 2019-03-14 allows office_admin/?action=deleteadmin CSRF to delete a user.
CVE-2020-8504 1 Arox 1 School Management Software Php\/mysql 2023-12-10 4.3 MEDIUM 6.5 MEDIUM
School Management Software PHP/mySQL through 2019-03-14 allows office_admin/?action=addadmin CSRF to add an administrative user.