CVE-2022-47130

A Cross-Site Request Forgery (CSRF) in Academy LMS before v5.10 allows a discount coupon to be arbitrarily created if an attacker with administrative privileges interacts on the CSRF page.

Date published : 2023-02-02

https://portswigger.net/web-security/csrf

https://www.linkedin.com/in/xvinicius/