Missing authentication in the StudentPopupDetails_Timetable method in IDAttend’s IDWeb application 3.1.052 and earlier allows extraction sensitive student data by unauthenticated attackers.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: TML
Published: 2023-10-25T08:38:38.666Z
Updated: 2024-08-02T11:53:53.615Z
Reserved: 2023-02-26T06:25:18.747Z
Link: CVE-2023-26570
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2023-10-25T18:17:25.337
Modified: 2023-10-28T03:20:26.277
Link: CVE-2023-26570
Redhat
No data.