CNNVD-202509-4437 Information

CNNVD ID

CNNVD-202509-4437

Related CVE

CVE-2025-56392

• CNNVD Published: 2025-09-30

Description (Chinese)

Collegetivity是Syauqizaidan Khairan Khalaf个人开发者的一个大学学生活动系统。 Collegetivity 1.0.0版本存在安全漏洞，该漏洞源于/dashboard/notes端点存在不安全的直接对象引用，可能导致攻击者冒充其他用户并执行任意操作。

Description (English)

Collegetity is a system of activities for university students by Syauqizaidan Khairan Khalaf personal developer. There is a security loophole in version 1.0.0 of Collegetity, which stems from the presence of unsafe direct-object references at the /dashboard/notes endpoint, which may lead to the attackers impersonating other users and carrying out random operations.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

个人开发者

Published

2025-09-30

Last Modified

2026-02-24

References

https://github.com/Zelilac/vulnerability-research/tree/main/CVE-2025-56392 https://github.com/syauqi/collegetivity