CVE-2024-13110 – Yunfan Learning Examination System Remote Information Disclosure Vulnerability

1月 2, 2025
3:16 pm

CVE ID : CVE-2024-13110

Published : Jan. 2, 2025, 2:15 p.m. | 1 hour, 1 minute ago

Description : A vulnerability classified as problematic has been found in Beijing Yunfan Internet Technology Yunfan Learning Examination System 1.9.2. Affected is an unknown function of the file src/main/java/com/yf/exam/modules/paper/controller/PaperController.java， of the component Exam Answer Handler. The manipulation leads to information disclosure. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.

Severity: 4.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CVE-2024-13110 – Yunfan Learning Examination System Remote Information Disclosure Vulnerability

Elvescore.io

Recent Posts

CVE-2025-0213 – Campcodes Project Management System Remote Unrestricted File Upload Vulnerability

CVE-2025-0214 – OpenCart TMD Custom Header Menu SQL Injection Vulnerability

CVE-2025-0212 – Campcodes Student Grading System SQL Injection

CVE-2024-41763 – IBM Engineering Lifecycle Optimization Weak Cryptographic Algorithms

CVE-2024-41765 – IBM Engineering Lifecycle Optimization File Traversal Vulnerability

CVE-2024-41766 – IBM Engineering Lifecycle Optimization RE DoS

CVE-2024-13110 – Yunfan Learning Examination System Remote Information Disclosure Vulnerability

CVE-2024-13110 – Yunfan Learning Examination System Remote Information Disclosure Vulnerability