Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Unifiedtransform
(Changeweb)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 4 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2025-06-04 | CVE-2025-46203 | An issue in Unifiedtransform v2.0 allows a remote attacker to escalate privileges via the /students/edit/{id} endpoint. | Unifiedtransform | N/A | ||
| 2025-06-04 | CVE-2025-46204 | An issue in Unifiedtransform v2.0 allows a remote attacker to escalate privileges via the /course/edit/{id} endpoint. | Unifiedtransform | N/A | ||
| 2025-03-10 | CVE-2025-25615 | Unifiedtransform 2.0 is vulnerable to Incorrect Access Control which allows viewing attendance list for all class sections. | Unifiedtransform | 2.7 | ||
| 2025-03-10 | CVE-2025-25616 | Unifiedtransform 2.0 is vulnerable to Incorrect Access Control, which allows students to modify rules for exams. The affected endpoint is /exams/edit-rule?exam_rule_id=1. | Unifiedtransform | 4.3 |