CVE-2025-69727 | Index-Education Pronote prior 2025.2.8 index.js composeUrlImgPhotoIndividu authorization

Inserito da Angelo Barbosa | Mar 16, 2026 | CVE

A vulnerability, which was classified as problematic, was found in Index-Education Pronote. Affected by this vulnerability is the function composeUrlImgPhotoIndividu of the file index.js. The manipulation results in missing authorization.

This vulnerability was named CVE-2025-69727. The attack may be performed from remote. There is no available exploit.

You should upgrade the affected component.

CVE-2025-69727 | Index-Education Pronote prior 2025.2.8 index.js composeUrlImgPhotoIndividu authorization

Post correlati

CVE-2024-8143 | gaizhenbiao ChuanhuChatGPT up to 20240628 Private Chat data access operations outside of expected data manager component

CVE-2024-2865 | Mergen Software Quality Management System up to 25032024 sql injection

CVE-2024-49348 | IBM Cloud Pak for Business Automation up to 22.0.2 privileges assignment

CVE-2023-51618 | D-Link DIR-X3260 prog.cgi SetWLanRadioSecurity stack-based overflow