CNNVD-202511-2842 Information

Nov 26, 2025 cve

CNNVD ID

CNNVD-202511-2842

CVE-2025-65670

CNNVD Published: 2025-11-26

Description (Chinese)

ClassroomIO.com是ClassroomIO开源的一个教育平台。 ClassroomIO.com 0.1.13版本存在安全漏洞，该漏洞源于不安全的直接对象引用，可能导致学生通过操纵URL中的课程ID访问敏感管理员或教师端点。

Description (English)

Classroomio.com is an educational platform open to Classroomio. ClassroomIO.com 0.1.13 has a security loophole, which originates from unsafe direct reference and may lead students to access sensitive administrators or teacher endpoints by manipulating course ID in URL.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

ClassroomIO

Published

2025-11-26

Last Modified

2026-02-24

References

https://github.com/Rivek619/CVE-2025-65670 http://classroomio.com https://github.com/classroomio/classroomio https://access.redhat.com/security/cve/cve-2025-65670

Share on: