Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

gunet — Vulnerabilities & Security Advisories 15

Browse all 15 CVE security advisories affecting gunet. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Gunet is a network management platform primarily used for monitoring and controlling network infrastructure. Historically, it has been susceptible to multiple remote code execution vulnerabilities, cross-site scripting flaws, and privilege escalation issues, accounting for its 15 recorded CVEs. The platform's web interface and API components have been particularly vulnerable to unauthenticated attacks, allowing potential compromise of network devices. While no major public security incidents have been widely documented, the consistent pattern of vulnerabilities in network management functionality suggests a need for rigorous hardening and regular patching to prevent unauthorized access and potential lateral movement within network environments.

Found 15 results / 15Clear Filters
Top products by gunet: openeclass
CVE IDTitleCVSSSeverityPublished
CVE-2026-24669 Open eClass Insecure Password Reset Token Reuse Enables Account Takeover — openeclassCWE-613 7.8 High2026-02-03
CVE-2026-24668 Open eClass Broken Access Control Allows Students to Add Content to Course Units — openeclassCWE-284 6.5 Medium2026-02-03
CVE-2026-24667 Open eClass's Active Sessions Not Invalidated After Password Change Allow Persistent Account Access — openeclassCWE-613 5.0 Medium2026-02-03
CVE-2026-24666 Open eClass is Vulnerable to CSRF in Teacher-Restricted Endpoints Allows Unauthorized Actions — openeclassCWE-352 6.5 Medium2026-02-03
CVE-2026-24665 Open eClass is Vulnerable to Stored Cross-Site Scripting (XSS) via Student Assignment Upload — openeclassCWE-79 8.7 High2026-02-03
CVE-2026-24774 Open eClass Business Logic Flaw Allows Students to Mark Attendance in Expired Activities — openeclassCWE-841 4.3 Medium2026-02-03
CVE-2026-24773 Open eClass Unauthenticated IDOR Allows Access to Arbitrary User Files — openeclassCWE-639 7.5 High2026-02-03
CVE-2026-24674 Open eClass is Vulnerable to Reflected Cross-Site Scripting (XSS) in Multiple Endpoints — openeclassCWE-79 4.7 Medium2026-02-03
CVE-2026-24673 Open eClass Has File Upload Filter Bypass via ZIP Archive Extraction — openeclassCWE-434 4.3 Medium2026-02-03
CVE-2026-24672 Open eClass is Vulnerable to Stored Cross-Site Scripting (XSS) in User Profile Fields — openeclassCWE-79 7.3 High2026-02-03
CVE-2026-24671 Open eClass is Vulnerable to Stored Cross-Site Scripting (XSS) in Multiple High-Privilege User Fields — openeclassCWE-79 6.1 Medium2026-02-03
CVE-2026-24670 Open eClass Has Broken Access Control in Course Units Module Allows Students to Create Units — openeclassCWE-284 6.5 Medium2026-02-03
CVE-2026-24664 Open eClass is Vulnerable to Username Enumeration via Login Response Discrepancies — openeclassCWE-204 5.3 Medium2026-02-03
CVE-2026-22241 Open eClass has Unrestricted File Upload that Leads to Remote Code Execution (RCE) — openeclassCWE-434 7.2 -2026-01-08
CVE-2024-38530 Open eClass Platform allows Arbitrary File Upload in "modules/h5p/save.php" — openeclassCWE-434 9.8 Critical2024-08-12

This page lists every published CVE security advisory associated with gunet. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.