VYPR

Edusoho

by Edusoho

Source repositories

CVEs (1)

  • CVE-2023-7335HigJan 22, 2026
    risk 0.50cvss epss 0.01

    EduSoho versions prior to 22.4.7 contain an arbitrary file read vulnerability in the classroom-course-statistics export functionality. A remote, unauthenticated attacker can supply crafted path traversal sequences in the fileNames[] parameter to read arbitrary files from the…