Missing authentication in the SearchStudentsStaff method in IDAttend’s IDWeb application 3.1.052 and earlier allows extraction sensitive student and teacher data by unauthenticated attackers.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: TML
Published: 2023-10-25T09:37:36.185Z
Updated: 2024-08-02T11:53:54.238Z
Reserved: 2023-02-26T06:25:18.747Z
Link: CVE-2023-26575
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2023-10-25T18:17:25.650
Modified: 2023-10-28T03:22:26.930
Link: CVE-2023-26575
Redhat
No data.