Unknown · Yunke Online School System · CVE-2024-8417
Name of the Vulnerable Software and Affected Versions:
Yunke Online School System versions up to 1.5.5
Description:
A vulnerability was found in the Yunke Online School System, affecting the file `/admin/educloud/videobind.html`. This issue leads to the inclusion of sensitive information in the source code and can be initiated remotely. The complexity of an attack is rather high, and the exploitation appears to be difficult.
Recommendations:
For versions up to 1.5.5, upgrade to version 1.5.6 to address this issue. As a temporary workaround, consider restricting access to the `/admin/educloud/videobind.html` file until the upgrade is applied.