All 4 CVE vulnerabilities found in edx-platform, with AI-generated Chinese analysis, references, and POCs.
Vendor: openedx
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-68270 | CourseLimitedStaff Role Allows Studio Access CWE-862 | 9.9 | Critical | 2025-12-16 |
| CVE-2025-47942 | Learners on edX Platform can download python_lib.zip CWE-862 | 5.3 | Medium | 2025-05-21 |
| CVE-2024-41806 | Open edX Platform's instructor upload CSV for cohort creation not Private by Default CWE-284 | 5.3 | Medium | 2024-07-25 |
| CVE-2024-22209 | XBlock custom auth does not respect JWT Scopes CWE-284 | 6.4 | Medium | 2024-01-13 |
All 4 known CVE vulnerabilities affecting edx-platform with full Chinese analysis, references, and POCs where available.