Security Advisory

CVE-2026-2997

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-02-23 01:55:37

Last updated 2026-02-23 13:46:00

Assigner twcert

State PUBLISHED

Description

Tronclass developed by WisdomGarden has a Insecure Direct Object Reference vulnerability. After obtaining a course ID, authenticated remote attackers to modify a specific parameter to obtain a course invitation code, thereby joining any course.

← Browse all CVEs View on cve.org ↗