CVE-2026-24669
The Open eClass platform (formerly known as GUnet eClass) is a complete course management system. Prior to version 4.2,
The Open eClass platform (formerly known as GUnet eClass) is a complete course management system. Prior to version 4.2, an insecure password reset mechanism allows local attackers to reuse a valid password reset token after it has already been used, enabling unauthorized password changes and potential account takeover. This issue has been patched in version 4.2.
HIGH · CVSS 7.8
EPSS 0.00022
Act now
- Public exploit or PoC is available
- CVSS base score ≥ 7.0
Sigma rules0
YARA rules0