CVE-2023-27257

Publication date

2023-10-25 10:15:17

Family

TML

State

PUBLISHED

Description

Missing authentication in the GetActiveToiletPasses method in IDAttend’s IDWeb application 3.1.052 and earlier allows retrieval of student information by unauthenticated attackers.