Vulnerabilities > Jenzabar > Internet Campus Solution > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-05-19 | CVE-2020-8434 | Session Fixation vulnerability in Jenzabar Internet Campus Solution Jenzabar JICS (aka Internet Campus Solution) before 9.0.1 Patch 3, 9.1 before 9.1.2 Patch 2, and 9.2 before 9.2.2 Patch 8 has session cookies that are a deterministic function of the username. | 9.8 |
| 2019-03-25 | CVE-2019-10011 | Use of Hard-coded Credentials vulnerability in Jenzabar Internet Campus Solution ICS/StaticPages/AddTestUsers.aspx in Jenzabar JICS (aka Internet Campus Solution) before 2019-02-06 allows remote attackers to create an arbitrary number of accounts with a password of 1234. | 9.8 |