Missing authentication in the StudentPopupDetails_ContactDetails method in IDAttend’s IDWeb application 3.1.052 and earlier allows extraction of sensitive student data by unauthenticated attackers.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: TML
Published: 2023-10-25T10:18:27.738Z
Updated: 2024-09-10T20:59:09.101Z
Reserved: 2023-03-01T00:29:13.784Z
Link: CVE-2023-27375
Vulnrichment
Updated: 2024-08-02T12:09:43.406Z
NVD
Status : Analyzed
Published: 2023-10-25T18:17:26.773
Modified: 2023-10-28T03:23:15.667
Link: CVE-2023-27375
Redhat
No data.