CVE-2026-24669 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

The Open eClass platform (formerly known as GUnet eClass) is a complete course management system. Prior to version 4.2, an insecure password reset mechanism all…
High CVSS: 7.8

CVE-2026-24669

The Open eClass platform (formerly known as GUnet eClass) is a complete course management system. Prior to version 4.2, an insecure password reset mechanism allows local attackers to reuse a valid password reset token after it has already been used, enabling unauthorized password changes and potential account takeover. This issue has been patched in version 4.2.
Vendor
Gunet
Product
Open Eclass Platform
CWE
CWE-613
Yayın Tarihi
2026-02-03 18:16:21
Güncelleme
2026-02-10 18:31:05
Source Identifier
security-advisories@github.com
KEV Date Added
-

Kategoriler

CWE-613 Open Eclass Platform HIGH Gunet 2026

Referanslar

https://github.com/gunet/openeclass/security/advisories/GHSA-gcqq-fxw6-f866