Unknown · Yunfan Learning Examination System · CVE-2023-46963
**Name of the Vulnerable Software and Affected Versions**
Yunfan Learning Examination System version 6.5
**Description**
The issue allows a remote attacker to obtain sensitive information via the `password` parameter in the login function.
**Recommendations**
For Yunfan Learning Examination System version 6.5, consider restricting access to the login function until a patch is available. As a temporary workaround, avoid using the `password` parameter in the affected login function to minimize the risk of exploitation.