CRITICAL🇵🇱 Wersja polska

CVE-2026-25885

CVSS 10.0v4.0pub. 2026-02-09upd. 2026-02-20

PolarLearn is a free and open-source learning program. In 0-PRERELEASE-16 and earlier, the group chat WebSocket at wss://polarlearn.nl/api/v1/ws can be used without logging in. An unauthenticated client can subscribe to any group chat by providing a group UUID, and can also send messages to any group. The server accepts the message and stores it in the group’s chatContent, so this is not just a visual spam issue.

🤖 AI Analysis
How it works

The WebSocket endpoint available at wss://polarlearn.nl/api/v1/ws accepts connections without verifying user identity (no required login). An attacker can subscribe to any group chat by providing only the group UUID, and then send messages to it. The server accepts and saves the submitted content in the chatContent field of the given group — this is therefore not merely a visual spam effect, but a permanent modification of data.

Impact

An unauthorized attacker can read the entire chat history of any group and write false or malicious messages to it, leading to a breach of confidentiality and integrity of data stored in the system.

Mitigation & patch

Apply the patch available in the project repository (commit 3ba588fda0d3f8e238483a20772719f27e52e79f) or update the application according to the recommendations described in the official security advisory GHSA-gvjm-5pw7-6c8c on GitHub

Who is affected

PolarLearn in version 0-PRERELEASE-16 and earlier pre-release versions

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:L/SC:H/SI:H/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
  • Polarlearn

    APP
    Polarlearn
    wszystkie wersje
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References

Related vulnerabilities

CVE-2026-39322CRITICAL9.2PL ✓ten sam produkt

PolarLearn: Pominięcie weryfikacji hasła przy logowaniu zbanowanych kont

CVE-2026-35610HIGH8.8ten sam produkt

PolarLearn is a free and open-source learning program. In 0-PRERELEASE-14 and earlier, setCustomPassword(userI...

CVE-2026-25126HIGH7.1ten sam produkt

PolarLearn is a free and open-source learning program. Prior to version 0-PRERELEASE-15, the vote API route (`...

CVE-2026-25222MEDIUM6.3ten sam produkt

PolarLearn is a free and open-source learning program. In 0-PRERELEASE-15 and earlier, a timing attack vulnera...

CVE-2026-25221LOW2.3ten sam produkt

PolarLearn to darmowy program edukacyjny o otwartym kodzie źródłowym. W wersji 0-PRERELEASE-15 i wcześniejszyc...