Unrated severityNVD Advisory· Published Mar 27, 2023· Updated Feb 19, 2025
WisdomGarden Tronclass ilearn - Broken Access Control
CVE-2023-24834
Description
WisdomGarden Tronclass has improper access control when uploading file. An authenticated remote attacker with general user privilege can exploit this vulnerability to access files belonging to other users by modifying the file ID within URL.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2(expand)+ 1 more
- (no CPE)
- (no CPE)range: 2.3.2
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.