VYPR

Polarlearn

by Polarnl

Source repositories

CVEs (6)

  • CVE-2026-39322HigApr 7, 2026
    risk 0.57cvss 8.8epss 0.00

    PolarLearn is a free and open-source learning program. In 0-PRERELEASE-15 and earlier, POST /api/v1/auth/sign-in creates a valid session for banned accounts before verifying the supplied password. That session is then accepted across authenticated /api routes, enabling account…

  • CVE-2026-35610HigApr 7, 2026
    risk 0.57cvss 8.8epss 0.00

    PolarLearn is a free and open-source learning program. In 0-PRERELEASE-14 and earlier, setCustomPassword(userId, password) and deleteUser(userId) in the account-management module used an inverted admin check. Because of the inverted condition, authenticated non-admin users were…

  • CVE-2026-25885Feb 9, 2026
    risk 0.00cvss epss 0.00

    PolarLearn is a free and open-source learning program. In 0-PRERELEASE-16 and earlier, the group chat WebSocket at wss://polarlearn.nl/api/v1/ws can be used without logging in. An unauthenticated client can subscribe to any group chat by providing a group UUID, and can also send…

  • CVE-2026-25222Feb 2, 2026
    risk 0.00cvss epss 0.00

    PolarLearn is a free and open-source learning program. In 0-PRERELEASE-15 and earlier, a timing attack vulnerability in the sign-in process allows unauthenticated attackers to determine if a specific email address is registered on the platform. By measuring the response time of…

  • CVE-2026-25221Feb 2, 2026
    risk 0.00cvss epss 0.00

    PolarLearn is a free and open-source learning program. In 0-PRERELEASE-15 and earlier, the OAuth 2.0 implementation for GitHub and Google login providers is vulnerable to Login Cross-Site Request Forgery (CSRF). The application fails to implement and verify the state parameter…

  • CVE-2026-25126Jan 29, 2026
    risk 0.00cvss epss 0.00

    PolarLearn is a free and open-source learning program. Prior to version 0-PRERELEASE-15, the vote API route (`POST /api/v1/forum/vote`) trusts the JSON body’s `direction` value without runtime validation. TypeScript types are not enforced at runtime, so an attacker can send…