LOW 3.3

PYSEC-2025-219

상세

An issue was discovered in Overhang.IO (tutor-open-edx) (overhangio/tutor) 20.0.2 allowing local unauthorized attackers to gain access to sensitive information due to the absence of proper cache-control HTTP headers and client-side session checks.

이 버전이 영향받나요?

사용 중인 패키지 버전을 입력하면 즉시 평가합니다.

영향 패키지

PyPI / tutor

최초 영향 버전: 0

No fixed version published yet for tutor (pip). Pin to a known-safe version or switch to an alternative.

참고

https://docs.tutor.edly.io [WEB]
https://github.com/Rivek619/CVE-2025-65681 [ADVISORY]
https://github.com/overhangio/tutor [PACKAGE]