CNNVD-202602-375 Information

CNNVD ID

CNNVD-202602-375

Related CVE

CVE-2020-37116

• CNNVD Published: 2026-02-03

Description (Chinese)

GUnet OpenEclass是希腊GUnet公司的一个学习管理系统。 GUnet OpenEclass 1.7.3版本存在访问控制错误漏洞，该漏洞源于默认包含phpMyAdmin 2.10.0.2，可能导致攻击者获取MySQL密码并完全控制数据库。

Description (English)

GUnet OpenEclass is a learning management system for the Greek company GUnet. Version 1.7.3 of GUnet OpenEclass contains access control error holes, which stem from the fact that the default contains phpMyAdmin 2.10.0.2, which may lead the assailant to acquire MySQL password and fully control the database.

Hazard Level

Medium

Vulnerability Type

访问控制错误

Affected Vendor

GUnet

Published

2026-02-03

Last Modified

2026-02-24

References

https://download.openeclass.org/files/docs/1.7/CHANGES.txt https://www.exploit-db.com/exploits/48163 https://www.openeclass.org/ https://www.vulncheck.com/advisories/gunet-openeclass-e-learning-platform-phpmyadmin-remote-access