CVE-2025-65681
Overhang.IO/tutor-open-edx (Overhang.IO) 20.0.2 is affected. The issue arises from missing cache-control HTTP headers and inadequate client-side session checks, enabling local unauthorized attackers to access sensitive information. Multiple sources corroborate this description. The available docu...