Praskla-technology Assessment-placipy

10 CVEs affecting Praskla-technology Assessment-placipy. Latest disclosed: 2026-02-09. Critical: 7, High: 2.

Top CVEs affecting Praskla-technology Assessment-placipy
CVESeverityScorePublishedSummary
CVE-2026-25875Critical9.82026-02-09PlaciPy is a placement management system designed for educational institutions. In version 1.0.0, The admin authorization middleware trusts client-controlled J…
CVE-2026-25814Critical9.82026-02-09PlaciPy is a placement management system designed for educational institutions. In version 1.0.0, User-controlled query parameters are passed directly into Dyn…
CVE-2026-25809Critical9.82026-02-09PlaciPy is a placement management system designed for educational institutions. In version 1.0.0, the code evaluation endpoint does not validate the assessment…
CVE-2026-25753Critical9.82026-02-06PlaciPy is a placement management system designed for educational institutions. In version 1.0.0, the application uses a hard-coded, static default password fo…
CVE-2026-25811Critical9.12026-02-09PlaciPy is a placement management system designed for educational institutions. In version 1.0.0, the application derives the tenant identifier directly from t…
CVE-2026-25876Critical9.12026-02-09PlaciPy is a placement management system designed for educational institutions. In version 1.0.0, the backend/src/routes/results.routes.ts verify authenticatio…
CVE-2026-25810Critical9.12026-02-09PlaciPy is a placement management system designed for educational institutions. In version 1.0.0, the backend/src/routes/student.submission.routes.ts verify au…
CVE-2026-25812High8.82026-02-09PlaciPy is a placement management system designed for educational institutions. In version 1.0.0, the application enables credentialed CORS requests but does n…
CVE-2026-25813High7.52026-02-09PlaciPy is a placement management system designed for educational institutions. In version 1.0.0, The application logs highly sensitive data directly to consol…
CVE-2026-25806Medium6.52026-02-09PlaciPy is a placement management system designed for educational institutions. In version 1.0.0, the GET /api/students/:email PUT /api/students/:email/status…