CSRF Vulnerability in Online Lesson Booking 0.8.6 and Earlier Allows Remote Authentication Hijacking

CVE-2019-5973 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Cross-site request forgery (CSRF) vulnerability in Online Lesson Booking 0.8.6 and earlier allows remote attackers to hijack the authentication of administrators via unspecified vectors.

Learn more about our Web Application Penetration Testing UK.