📦 Polarlearn

Name: Polarlearn
Author: Polarlearn

by Polarlearn

🔍 What is Polarlearn?

Description coming soon...

🛡️ Security Overview

Click on a severity to filter vulnerabilities

⚠️ Known Vulnerabilities

CVE-2026-25885

HIGH CVSS 7.5 Feb 9, 2026

CVE-2026-25885 is an authentication bypass vulnerability in PolarLearn's WebSocket group chat functionality. Unauthenticated attackers can subscribe to any group chat and send messages that are perman...

CVE-2026-25221

HIGH CVSS 8.1 Feb 2, 2026

PolarLearn's OAuth 2.0 implementation for GitHub and Google login is vulnerable to Login CSRF due to missing state parameter validation. This allows attackers to trick victims into logging into attack...

CVE-2026-25222

HIGH CVSS 7.5 Feb 2, 2026

This timing attack vulnerability in PolarLearn allows unauthenticated attackers to enumerate valid user email addresses by measuring login response times. Attackers can determine which email addresses...

CVE-2026-25126

HIGH CVSS 7.1 Jan 29, 2026

PolarLearn's vote API route accepts arbitrary string values for the 'direction' parameter due to missing runtime validation. Attackers can send unexpected values that bypass intended business logic, c...