CVE-2026-3770 - Vulnerability Analysis
MediumCVSS: 4.3Last Updated: March 9, 2026
SourceCodester Computer Laboratory Management System - Cross-Site Request Forgery
Published: March 8, 2026Updated: March 9, 2026PoC AvailableRemote Exploitable
Overview
SourceCodester Computer Laboratory Management System 1.0 contains a cross-site request forgery caused by manipulation of an unknown component, letting remote attackers perform unauthorized actions, exploit requires no special privileges.
Severity & Score
Severity: Medium
CVSS Score: 4.3
Impact
Remote attackers can perform unauthorized actions on behalf of authenticated users, potentially compromising user accounts or data integrity.
Mitigation
Update to the latest version or apply available patches to mitigate the vulnerability.
References
Related Resources
Details
- CVE ID
- CVE-2026-3770
- Severity
- Medium
- CVSS Score
- 4.3
- Type
- cross_site_request_forgery
- Status
- confirmed
CWE
- CWE-352
CVSS Metrics
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N