CVE-2022-43340
EUVD-2022-4637927.10.2022, 20:15
A Cross-Site Request Forgery (CSRF) in dzzoffice 2.02.1_SC_UTF8 allows attackers to arbitrarily create user accounts and grant Administrator rights to regular users.
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| dzzoffice | dzzoffice | 2.02.1 |
𝑥
= Vulnerable software versions
Common Weakness Enumeration