CVE-2025-25621 Information

Description

Unifiedtransform 2.0 is vulnerable to Incorrect Access Control which allows teachers to take attendance of fellow teachers. This affected endpoint is /courses/teacher/index?teacher_id=2&semester_id=1.

Reference

https://github.com/armaansidana2003/CVE-2025-25621 https://github.com/changeweb/Unifiedtransform