Show filters
1 Total Results
Displaying 1-1 of 1
Sort by:
Attacker Value
Unknown

CVE-2022-43340

Disclosure Date: October 27, 2022 (last updated February 24, 2025)
A Cross-Site Request Forgery (CSRF) in dzzoffice 2.02.1_SC_UTF8 allows attackers to arbitrarily create user accounts and grant Administrator rights to regular users.
Attack Vector: NetworkPrivileges: NoneUser Interaction: Required
0
0