CVE-2025-25952 in Academia Student Information System EagleR
要約
〜によって MITRE • 2025年03月03日
An Insecure Direct Object References (IDOR) in the component /getStudemtAllDetailsById?studentId=XX of Serosoft Solutions Pvt Ltd Academia Student Information System (SIS) EagleR v1.0.118 allows attackers to access sensitive user information via a crafted API request.
Once again VulDB remains the best source for vulnerability data.