Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Autolab Has Misconfigured Reset Password Permissions
Vulnerability Description
Autolab, a course management service that enables auto-graded programming assignments, has misconfigured reset password permissions in version 3.0.0. For email-based accounts, users with insufficient privileges could reset and theoretically access privileged users' accounts by resetting their passwords. This issue is fixed in version 3.0.1. No known workarounds exist.
CVSS Information
N/A
Vulnerability Type
认证机制不恰当
Vulnerability Title
Autolab 授权问题漏洞
Vulnerability Description
Autolab是Autolab开源的一项课程管理服务。支持自动评分的编程作业。 Autolab 3.0.0版本存在授权问题漏洞,该漏洞源于重置密码权限配置错误。
CVSS Information
N/A
Vulnerability Type
N/A