erudika — Vulnerabilities & Security Advisories 8

Browse all 8 CVE security advisories affecting erudika. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Top products by erudika:scoold erudika/para para erudika/scoold

CVE ID	Title	CVSS	Severity	Published
CVE-2026-39354	Scoold has an Authenticated Arbitrary Question Overwrite via Client-Controlled postId in POST /questions/ask — scooldCWE-639	6.5	Medium	2026-04-07
CVE-2026-34832	Scoold: Cross-Account Feedback Deletion (IDOR) — scooldCWE-639	6.5	Medium	2026-04-02
CVE-2025-49009	Para Inserts Sensitive Information into Log File for Facebook authentication — paraCWE-532	6.2	Medium	2025-06-05
CVE-2025-48955	Para Server Logs Sensitive Information — paraCWE-532	6.2	Medium	2025-06-02
CVE-2024-50334	Semicolon Path Injection on API /api;/config — scooldCWE-288	7.5^AI	High^AI	2024-10-29
CVE-2022-1848	Business Logic Errors in erudika/para — erudika/paraCWE-840	5.3	-	2022-05-24
CVE-2022-1782	Cross-site Scripting (XSS) - Generic in erudika/para — erudika/paraCWE-79	5.4	-	2022-05-18
CVE-2022-1543	Improper handling of Length parameter in erudika/scoold — erudika/scooldCWE-130	8.8	-	2022-04-29

This page lists every published CVE security advisory associated with erudika. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.

Goal Reached Thanks to every supporter — we hit 100%!

erudika — Vulnerabilities & Security Advisories 8