exploitDog

CVE-2025-65669

Опубликовано: 26 нояб. 2025

Источник: nvd

CVSS3: 9.1

EPSS Низкий

Описание

An issue was discovered in classroomio 0.1.13. Student accounts are able to delete courses from the Explore page without any authorization or authentication checks, bypassing the expected admin-only deletion restriction.

Ссылки

http://classroomio.com
Product
https://github.com/Rivek619/CVE-2025-65669
Exploit
Third Party Advisory
https://github.com/classroomio/classroomio
Product
https://github.com/Rivek619/CVE-2025-65669
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:classroomio:classroomio:0.1.13:*:*:*:*:*:*:*

EPSS

Процентиль: 54%

0.00309

Низкий

9.1 Critical

CVSS3

Дефекты

CWE-862

Связанные уязвимости

GHSA-43w2-q5cj-hwmq

CVSS3: 9.1

github

2 месяца назад

An issue was discovered in classroomio 0.1.13. Student accounts are able to delete courses from the Explore page without any authorization or authentication checks, bypassing the expected admin-only deletion restriction.

EPSS

Процентиль: 54%

0.00309

Низкий

9.1 Critical

CVSS3

Дефекты

CWE-862