CVE-2023-26570

Missing authentication in the StudentPopupDetails_Timetable method in IDAttend’s IDWeb application 3.1.052 and earlier allows extraction sensitive student data by unauthenticated attackers. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt