POC详情: 2cd8e6ab6c7910be4cabf1645f5f8c89abb6f05c

来源
https://github.com/spbavarva/CVE-2025-46204
关联漏洞
标题: Unifiedtransform 安全漏洞 (CVE-2025-46204)
描述:Unifiedtransform是Hasib Mahmud个人开发者的一款开源的学校管理软件。 Unifiedtransform v2.0版本存在安全漏洞,该漏洞源于/course/edit/{id}端点漏洞,可能导致远程权限提升。
描述
PoC of CVE-2025-46204
介绍
## Description

Unifiedtransform v2.0 is vulnerable to Incorrect Access Control. Any user (students and teachers) can access and modify course details via the /course/edit/{id} endpoints. This functionality intended exclusively for administrative use. Exploiting this flaw allows unauthorized manipulation of course names and categories, compromising data integrity and administrative controls.

Vendor: [Unifiedtransform](https://github.com/changeweb/Unifiedtransform)


## Product

A school management Software
v2.0

---

## Affected components

Access Control Mechanism which is responsible for course permissions.
Route: GET /course/edit/{id}
Controller: CourseController
Method: edit()

And all other endpoints and functionalities related to editing course.

## PoC/Attack Vector

**Step 1:** Install the application as instructed in the official GitHub repository, and log in using the default admin credentials. (admin@ut.com:password)

**Step 2:** Create several courses to populate data.

**Step 3:** Log in to the application as a Teacher or Student.

**Step 4:** Navigate to the endpoint:  
/course/edit/{id}

where ID starts with 1 with any existing course.
suppose if you created 2 courses the ID=1 will be for course 1 and ID=2 will be for course 2

**Step 5:** Change the course name and type and click on update.

---

**Vulnerability Type:** Incorrect Access Control  
**Attack Type:** Remote  
**Impact:** Escalation of Privileges  
**Attack Vectors:** Broken Access Control allows teachers or students to modify data of course.

**Discoverer:** Sneh Bavarva


## Additional information

**Impact:** Unauthorized changes to course information can lead to academic mismanagement and breakdown of curriculum structure. Only administrators should have the authority to modify such sensitive data.


**References:**

https://github.com/changeweb/Unifiedtransform
https://cwe.mitre.org/data/definitions/284.html

- [Unifiedtransform Official Site](http://unifiedtransform.com)
- [Unifiedtransform GitHub Repository](https://github.com/changeweb/Unifiedtransform)
文件快照

 [4.0K]  /data/pocs/2cd8e6ab6c7910be4cabf1645f5f8c89abb6f05c
├── [ 42M]  course edited by student and teacher.mkv
└── [2.0K]  README.md

0 directories, 2 files
神龙机器人已为您缓存
备注
    1. 建议优先通过来源进行访问。
    2. 如果因为来源失效或无法访问,请发送邮箱到 f.jinxu#gmail.com 索取本地快照(把 # 换成 @)。
    3. 神龙已为您对POC代码进行快照,为了长期维护,请考虑为本地POC付费,感谢您的支持。