VYPR
Unrated severityNVD Advisory· Published Mar 27, 2023· Updated Feb 19, 2025

WisdomGarden Tronclass ilearn - Broken Access Control

CVE-2023-24834

Description

WisdomGarden Tronclass has improper access control when uploading file. An authenticated remote attacker with general user privilege can exploit this vulnerability to access files belonging to other users by modifying the file ID within URL.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.