GUnet Open eClass Platform (aka openeclass) before 3.11 might allow remote attackers to read students' submitted assessments because it does not ensure that the web server blocks directory listings, and the data directory is inside the web root by default.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2020-08-19T11:50:17

Updated: 2024-08-04T15:12:08.739Z

Reserved: 2020-08-17T00:00:00

Link: CVE-2020-24381

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2020-08-19T12:15:11.340

Modified: 2024-11-21T05:14:42.517

Link: CVE-2020-24381

cve-icon Redhat

No data.