ThreatPress

WordPress Vulnerabilities Database

Back

WordPress School Management plugin < 57.0 - Cross-Site Request Forgery (CSRF) and Stored Cross-Site Scripting (XSS) vulnerabilities

Product
School Management
Description
Cross-Site Request Forgery (CSRF) and Stored Cross-Site Scripting (XSS) vulnerabilities found by m0ns7er in WordPress School Management plugin (versions < 57.0).
Solution
Update the WordPress School Management plugin to the latest available version (at least 57.0).
Classification
Type Multi
References
Plugin changelog
CVE
Name CVE-N/A
Versions
Affected In < 57.0
Fixed In 57.0
Disclosure date
2019-07-13
Credits
m0ns7er
Submitter
ThreatPress