Описание
Frappe Learning is a learning system that helps users structure their content. Starting in version 2.0.0 and prior to version 2.41.0, users were able to access the submissions made by other students The issue has been fixed in version 2.41.0 by ensuring proper roles and redirecting if accessed via direct URL.
Ссылки
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия от 2.0.0 (включая) до 2.41.0 (исключая)
cpe:2.3:a:frappe:learning:*:*:*:*:*:*:*:*
EPSS
Процентиль: 13%
0.00043
Низкий
4.3 Medium
CVSS3
Дефекты
CWE-200
NVD-CWE-noinfo
EPSS
Процентиль: 13%
0.00043
Низкий
4.3 Medium
CVSS3
Дефекты
CWE-200
NVD-CWE-noinfo