Missing authentication in the GetStudentGroupStudents method in IDAttend’s IDWeb application 3.1.052 and earlier allows retrieval of student and teacher data by unauthenticated attackers.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: TML
Published: 2023-10-25T10:16:16.821Z
Updated: 2024-09-11T13:11:32.294Z
Reserved: 2023-02-27T05:41:59.845Z
Link: CVE-2023-27258
Vulnrichment
Updated: 2024-08-02T12:01:32.606Z
NVD
Status : Analyzed
Published: 2023-10-25T18:17:26.470
Modified: 2023-10-28T03:19:57.333
Link: CVE-2023-27258
Redhat
No data.