CNNVD-202602-320 Information

CNNVD ID

CNNVD-202602-320

Related CVE

CVE-2026-24673

• CNNVD Published: 2026-02-03

Description (Chinese)

Open eClass是Greek Universities Network开源的一个电子课堂系统。 Open eClass 4.2之前版本存在代码问题漏洞，该漏洞源于文件上传验证绕过，可能导致攻击者通过ZIP归档上传禁止扩展名的文件。

Description (English)

Open eClass is an electronic classroom system that is an open source for Greek United Nations Network. There was a code problem gap in the previous version of Open eClass 4.2, which stemmed from the document uploading certification bypassing, which could lead to the attackers uploading a document banning extension through the ZIP archive.

Hazard Level

High

Vulnerability Type

代码问题

Affected Vendor

Greek Universities Network

Published

2026-02-03

Last Modified

2026-02-24

References

https://github.com/gunet/openeclass/security/advisories/GHSA-3g4j-56gp-v6wv https://access.redhat.com/security/cve/cve-2026-24673

Patch

https://github.com/gunet/openeclass/tags