VYPR
Medium severity5.4NVD Advisory· Published Mar 16, 2026· Updated Apr 17, 2026

CVE-2025-65734

CVE-2025-65734

Description

An authenticated arbitrary file upload vulnerability in the Courses/Work Assignments module of gunet Open eClass v3.11, and fixed in v3.13, allows attackers to execute arbitrary code via uploading a crafted SVG file.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Gunet/Openeclass2 versions
    cpe:2.3:a:openeclass:openeclass:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:openeclass:openeclass:*:*:*:*:*:*:*:*range: >=3.11,<3.13
    • (no CPE)range: >=3.11, <3.13

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.