CNNVD-202602-962 Information
Feb 06, 2026
cve
CNNVD ID
CNNVD-202602-962
Related CVE
- CNNVD Published: 2026-02-06
Description (Chinese)
PlaciPy是Praskla Technology开源的一个综合性的就业管理系统,旨在为教育机构简化学生、培训人员和管理人员的就业流程。 PlaciPy 1.0.0版本存在安全漏洞,该漏洞源于对所有新创建的学生账户使用硬编码的静态默认密码,可能导致大规模账户接管。
Description (English)
PlaciPy is an integrated employment management system, which is an open source for Praskla Technology, and aims to simplify the employment process for students, trainers and managers in educational institutions. There is a security loophole in the version PlaciPy 1.0.0, which stems from the use of hard-coded static default passwords for all newly created student accounts, which may lead to large-scale account takeovers.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
Praskla Technology
Published
2026-02-06
Last Modified
2026-02-24
References
https://github.com/Praskla-Technology/assessment-placipy/security/advisories/GHSA-6537-cf56-j9w2
Share on: