CVE-2025-69727 | Index-Education Pronote prior 2025.2.8 index.js composeUrlImgPhotoIndividu authorization

Inserito da Angelo Barbosa | Mar 16, 2026 | CVE

A vulnerability, which was classified as problematic, was found in Index-Education Pronote. Affected by this vulnerability is the function composeUrlImgPhotoIndividu of the file index.js. The manipulation results in missing authorization.

This vulnerability was named CVE-2025-69727. The attack may be performed from remote. There is no available exploit.

You should upgrade the affected component.

CVE-2025-69727 | Index-Education Pronote prior 2025.2.8 index.js composeUrlImgPhotoIndividu authorization

Post correlati

CVE-2024-38421 | Qualcomm Snapdragon Auto up to WSA8845H GPU use after free

CVE-2023-49860 | WP Project Manager Plugin up to 2.6.7 on WordPress cross site scripting

CVE-2025-5197 | huggingface Transformers up to 4.51.3 API Service convert_tf_weight_name_to_pt_weight_name redos

CVE-2023-7150 | Chic Beauty Salon 20230703 Product product-list.php unrestricted upload