216.73.217.64

CVE-2026-25126

· Published 29/01/2026 22:15 · Modified 29/01/2026 22:15

Labels: CVE-2026-25126 2026-01-29CVE-2026-25126CWE-20[email protected]

Essential information

Published
29/01/2026 22:15
Modified
29/01/2026 22:15
Author
Creator
CVSS
7.1 HIGH (v3.1)
CISA KEV
No
CWE
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:N

CVSS metrics

Description

PolarLearn is a free and open-source learning program. Prior to version 0-PRERELEASE-15, the vote API route (`POST /api/v1/forum/vote`) trusts the JSON body’s `direction` value without runtime validation. TypeScript types are not enforced at runtime, so an attacker can send arbitrary strings (e.g., `"x"`) as `direction`. Downstream (`VoteServer`) treats any non-`"up"` and non-`null` value as a downvote and persists the invalid value in `votes_data`. This can be exploited to bypass intended business logic. Version 0-PRERELEASE-15 fixes the vulnerability.

NVD status

Status
Received — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
polarlearn / polarlearn cpe:2.3:a:polarlearn:polarlearn:*:*:*:*:*:*:*:*

References