scoold — Vulnerabilities & Security Advisories 3

All 3 CVE vulnerabilities found in scoold, with AI-generated Chinese analysis, references, and POCs.

CVE ID	Title	CVSS	Severity	Published
CVE-2026-39354	Scoold has an Authenticated Arbitrary Question Overwrite via Client-Controlled postId in POST /questions/ask CWE-639	6.5	Medium	2026-04-07
CVE-2026-34832	Scoold: Cross-Account Feedback Deletion (IDOR) CWE-639	6.5	Medium	2026-04-02
CVE-2024-50334	Semicolon Path Injection on API /api;/config CWE-288	7.5^AI	High^AI	2024-10-29

All 3 known CVE vulnerabilities affecting scoold with full Chinese analysis, references, and POCs where available.