Auth bypass in Th30d4y Openlearnx
CVE-2026-44720
OpenLearnX is an open-source, decentralized learning and assessment platform. Prior to 2.0.4, a critical authentication vulnerability was identified in OpenLearnX that could allow unauthorized access to user accounts under specific conditi…
Vulnerability class: Broken Authentication
EPSS: 0.000 (7.4th percentile) — read the EPSS interpretation.
Affected products
- Th30d4y Openlearnx — versions < 2.0.4
Weakness classification (CWE)
References
- security-advisories@github.com (x_refsource_CONFIRM)