Irohasoft

irohasoft

2 CVEs • 1 product

Products (1)

Click to collapse

Toggle

Iroha Board

iroha_board

2 CVEs

CVEs (2)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2025-48497 1Irohasoft 1Iroha Board Sep 30, 2025 Jun 26, 2025 5.1 MEDIUM· v4 4.3 MEDIUM· v3 N/A· v2 Cross-site request forgery vulnerability exists in iroha Board versions v0.10.12 and earlier. If a user accesses a specially crafted URL while being logged in to the affected product, arbitrary learning histories may be...Show more Cross-site request forgery vulnerability exists in iroha Board versions v0.10.12 and earlier. If a user accesses a specially crafted URL while being logged in to the affected product, arbitrary learning histories may be registered.Show less
CVE-2025-41404 1Irohasoft 1Iroha Board Sep 30, 2025 Jun 26, 2025 5.3 MEDIUM· v4 4.3 MEDIUM· v3 N/A· v2 Direct request ('Forced Browsing') issue exists in iroha Board versions v0.10.12 and earlier. If this vulnerability is exploited, non-public contents may be viewed by an attacker who can log in to the affected product.

CVE

VENDORS

PRODUCTS

UPDATED

PUBLISHED

CVSS

CVE-2025-48497

1Irohasoft

1Iroha Board

Sep 30, 2025

Jun 26, 2025

5.1 MEDIUM· v4

4.3 MEDIUM· v3

N/A· v2

Cross-site request forgery vulnerability exists in iroha Board versions v0.10.12 and earlier. If a user accesses a specially crafted URL while being logged in to the affected product, arbitrary learning histories may be...Show more

CVE-2025-41404