Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/25 4:12 p.m.17 views

CVE-2025-48375

Schule is open-source school management system software. Prior to version 1.0.1, the file forgotpassword.php or equivalent endpoint responsible for email-based OTP generation lacks proper rate limiting controls, allowing attackers to abuse the OTP request functionality. This vulnerability can be...

8.7CVSS7.2AI score0.00361EPSS
Exploits1References1
Circl
Circl
added 2025/05/23 4:45 p.m.13 views

CVE-2025-48375

creationtimestamp| type| source ---|---|--- 2025-05-23 16:45:03+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/17414 2025-05-23 17:28:32+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lpu5qpkiwu2q 2025-05-23 23:29:36+00:00| seen|...

8.7CVSS5.8AI score0.00361EPSS
Exploits1References3
NVD
NVD
added 2025/05/23 4:15 p.m.14 views

CVE-2025-48375

Schule is open-source school management system software. Prior to version 1.0.1, the file forgotpassword.php or equivalent endpoint responsible for email-based OTP generation lacks proper rate limiting controls, allowing attackers to abuse the OTP request functionality. This vulnerability can be...

8.7CVSS0.00361EPSS
Exploits1References1
Cvelist
Cvelist
added 2025/05/23 3:41 p.m.19 views

CVE-2025-48375 Schule Missing Rate Limiting on OTP Email Requests – Susceptible to Abuse & DoS

Schule is open-source school management system software. Prior to version 1.0.1, the file forgotpassword.php or equivalent endpoint responsible for email-based OTP generation lacks proper rate limiting controls, allowing attackers to abuse the OTP request functionality. This vulnerability can be...

8.7CVSS0.00361EPSS
Exploits1References1
CVE
CVE
added 2025/05/23 3:41 p.m.53 views

CVE-2025-48375

CVE-2025-48375 concerns Schule, an open-source school management system. Prior to version 1.0.1, the endpoint responsible for email-based OTP generation (forgot_password.php) lacks proper rate limiting, enabling abuse of the OTP request function. This can lead to excessive OTP emails, risking den...

8.7CVSS6.5AI score0.00361EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder