CNNVD-202602-316 Information
CNNVD ID
CNNVD-202602-316
Related CVE
- CNNVD Published: 2026-02-03
Description (Chinese)
Open eClass是Greek Universities Network开源的一个电子课堂系统。 Open eClass 4.2之前版本存在安全漏洞,该漏洞源于存在不安全的直接对象引用,可能导致未经认证的远程攻击者通过直接请求可预测的用户标识符访问其他用户的个人文件。
Description (English)
Open eClass is an electronic classroom system that is an open source for Greek United Nations Network. The previous version of Open eClass 4.2 had a security loophole, which stemmed from the presence of an unsafe direct-object reference and could lead to unauthorized remote assailants accessing the personal files of other users by directly requesting a predictable user identifier.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
Greek Universities Network
Published
2026-02-03
Last Modified
2026-02-24
References
https://github.com/gunet/openeclass/security/advisories/GHSA-63pm-pff4-xc9c https://access.redhat.com/security/cve/cve-2026-24773
Patch
https://github.com/gunet/openeclass/tags
Share on: