CNNVD-202602-1277 Information

CNNVD ID

CNNVD-202602-1277

Related CVE

CVE-2026-25876

• CNNVD Published: 2026-02-09

Description (Chinese)

PlaciPy是Praskla Technology开源的一个综合性的就业管理系统，旨在为教育机构简化学生、培训人员和管理人员的就业流程。 PlaciPy 1.0.0版本存在安全漏洞，该漏洞源于验证身份验证但未执行对象级授权检查，可能导致未授权访问评估结果。

Description (English)

PlaciPy is an integrated employment management system, which is an open source for Praskla Technology, and aims to simplify the employment process for students, trainers and managers in educational institutions. Version 1.0.0 of PlaciPy contains a security loophole, which stems from the authentication of identity but not from the implementation of a client-level authorization check, which may lead to unauthorized access to the results of the assessment.

Vulnerability Type

其他

Affected Vendor

Praskla Technology

Published

2026-02-09

Last Modified

2026-02-24

References

https://github.com/Praskla-Technology/assessment-placipy/security/advisories/GHSA-w238-w4mg-j357