CVE-2025-25616 Information

Description

Unifiedtransform 2.0 is vulnerable to Incorrect Access Control which allows students to modify rules for exams. The affected endpoint is /exams/edit-rule?exam_rule_id=1.

Reference

https://github.com/armaansidana2003/CVE-2025-25616 https://github.com/changeweb/Unifiedtransform