cleantalk
Vulnerabilities and Security Researches

Student Result or Employee Database, af2fead6-9f8e-4c00-ac50-440de969ca42

CVE, Research URL

af2fead6-9f8e-4c00-ac50-440de969ca42

Home page URL

Security reports for Student Result or Employee Database

Application

Student Result or Employee Database

Published on
-
Research Description
Student Result or Employee Database [simple-student-result] < 1.7.5 Student Result or Employee Database &lt; 1.8.0 - Unauthorised REST Calls The plugin has a flawed permission callback in its REST endpoints, allowing unauthenticated attackers to call them and add/edit/delete arbitrary student for example
Affected versions
max 1.7.5.
Status
vulnerable
Previous vulnerability researches
Elizaibots (CVE-2025-49893) , Aug 20, 2025
Elizaibots (abcf8d2a13b3fd2324a04f9724e5ac9347743677) , Jun 16, 2026
New vulnerability
Visitor Traffic Real Time Statistics (d55d0500d8a2618b43e8fa9d45f7c31c4efa802b) , Jun 16, 2026
Visitor Traffic Real Time Statistics (3961132f-ecc1-4f41-83f1-3ac537143b38) , Jun 16, 2026
Visitor Traffic Real Time Statistics (e8d4a97633d55dd8c46a212365ad808cf7c30224) , Jun 16, 2026
Ultimate Maps by Supsystic (3958f2eb5c5ad29221566e4e9b152ab95b01c255) , Jun 16, 2026
Ultimate Maps by Supsystic (0b83038e-92d2-4bdd-a597-a5d8eff50edb) , Jun 16, 2026