Missing authentication in the GetAssignmentsDue method in IDAttend’s IDWeb application 3.1.052 and earlier allows extraction of sensitive student and teacher data by unauthenticated attackers.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: TML
Published: 2023-10-25T10:17:25.615Z
Updated: 2024-09-11T13:11:22.288Z
Reserved: 2023-02-27T05:41:59.845Z
Link: CVE-2023-27259
Vulnrichment
Updated: 2024-08-02T12:01:32.633Z
NVD
Status : Analyzed
Published: 2023-10-25T18:17:26.527
Modified: 2023-10-28T03:20:02.377
Link: CVE-2023-27259
Redhat
No data.