Missing authentication in the StudentPopupDetails_EmergencyContactDetails method in IDAttend’s IDWeb application 3.1.052 and earlier allows extraction of sensitive student data by unauthenticated attackers.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: TML
Published: 2023-10-25T10:20:04.010Z
Updated: 2024-09-11T13:10:33.385Z
Reserved: 2023-03-01T00:29:13.785Z
Link: CVE-2023-27377
Vulnrichment
Updated: 2024-08-02T12:09:43.380Z
NVD
Status : Analyzed
Published: 2023-10-25T18:17:26.897
Modified: 2023-10-28T03:23:47.653
Link: CVE-2023-27377
Redhat
No data.