Vulnerabilities > CVE-2021-42336 - Unspecified vulnerability in Huaju Easytest Online Learning Test Platform 1705

047910
CVSS 4.0 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
SINGLE
Confidentiality impact
PARTIAL
Integrity impact
NONE
Availability impact
NONE
network
low complexity
huaju

Summary

The learning history page of the Easytest is vulnerable by permission bypass. After obtaining a user’s permission, remote attackers can access other users’ and administrator’s account information except password by crafting URL parameters.

Vulnerable Configurations

Part Description Count
Application
Huaju
1