CNNVD-202509-3141 Information
Sep 19, 2025
cve
CNNVD ID
CNNVD-202509-3141
Related CVE
- CNNVD Published: 2025-09-19
Description (Chinese)
WisdomGarden Tronclass是中国智园(WisdomGarden)公司的一款互动式教学管理平台。 WisdomGarden Tronclass存在安全漏洞,该漏洞源于不安全的直接对象引用,可能导致远程攻击者通过修改特定参数访问其他用户文件。
Description (English)
WisdomGardenTronclass is an interactive teaching management platform for WisdomGarden. There is a security loophole in WisdomGardenTronclass, which stems from unsafe direct-object references and may lead to remote attackers accessing other user files by modifying specific parameters.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
欣阳
Published
2025-09-19
Last Modified
2026-02-24
References
https://www.twcert.org.tw/en/cp-139-10397-49db1-2.html https://www.twcert.org.tw/tw/cp-132-10396-68624-1.html
Patch
https://www.wisdomgarden.com.tw/
Share on: