VYPR

Canvas LMS

by Instructure

CVEs (1)

  • CVE-2021-36539MedJan 26, 2023
    risk 0.42cvss 6.5epss 0.01

    Instructure Canvas LMS didn't properly deny access to locked/unpublished files when the unprivileged user access the DocViewer based file preview URL (canvadoc_session_url).