Universis Students

DATE	CVE	VULNERABILITY TITLE	RISK
2022-05-18	CVE-2022-28924	Exposure of Resource to Wrong Sphere vulnerability in Universis Universis-Students An information disclosure vulnerability in UniverSIS-Students before v1.5.0 allows attackers to obtain sensitive information via a crafted GET request to the endpoint /api/students/me/courses/. network low complexity universis CWE-668	4.0

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.