CVE-2026-7491 in School Appالمعلومات

الملخص

بحسب MITRE • 02/05/2026

School App developed by Zyosoft has an Insecure Direct Object Reference vulnerability, allowing authenticated remote attackers to modify a specific parameter to read and modify other users' data.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

مسؤول

Twcert

حجز

30/04/2026

إفشاء

02/05/2026

الاعتدال

تمت الموافقة

إدخال

VDB-360839

CPE

جاهز

CWE

CWE-639 (مؤكد)

CVSS

8.1 (CNA)

EPSS

0.00049

KEV

لا

النشاطات

منخفض جدًا

المصادر

MITRE	https://www.cve.org/CVERecord?id=CVE-2026-7491
NVD	https://nvd.nist.gov/vuln/detail/CVE-2026-7491
CVE Details	https://www.cvedetails.com/cve/CVE-2026-7491/

التالي ▸نظرة عامة ◂ السابق

Do you want to use VulDB in your project?

Use the official API to access entries easily!