Rivek Raj Tamang (RivuDon)

7 exploits Active since Nov 2025
CVE-2025-65681 NOMISEC LOW WRITEUP
Overhang.IO <20.0.2 - Info Disclosure
An issue was discovered in Overhang.IO (tutor-open-edx) (overhangio/tutor) 20.0.2 allowing local unauthorized attackers to gain access to sensitive information due to the absence of proper cache-control HTTP headers and client-side session checks.
CVSS 3.3
CVE-2025-69581 NOMISEC MEDIUM WRITEUP
Chamillo LMS 1.11.2 - Info Disclosure
An issue was discovered in Chamillo LMS 1.11.2. The Social Network /personal_data endpoint exposes full sensitive user information even after logout because proper cache-control is missing. Using the browser back button restores all personal data, allowing unauthorized users on the same device to view confidential information. This leads to profiling, impersonation, targeted attacks, and significant privacy risks.
CVSS 5.5
CVE-2025-65672 NOMISEC HIGH WRITEUP
classroomio <0.1.13 - Info Disclosure
Insecure Direct Object Reference (IDOR) in classroomio 0.1.13 allows unauthorized share and invite access to course settings.
CVSS 7.5
CVE-2025-65669 NOMISEC CRITICAL WRITEUP
Classroomio <0.1.13 - Auth Bypass
An issue was discovered in classroomio 0.1.13. Student accounts are able to delete courses from the Explore page without any authorization or authentication checks, bypassing the expected admin-only deletion restriction.
CVSS 9.1
CVE-2025-65676 NOMISEC MEDIUM WRITEUP
Classroomio LMS 0.1.13 - XSS
Stored Cross site scripting (XSS) vulnerability in Classroomio LMS 0.1.13 allows authenticated attackers to execute arbitrary code via crafted SVG cover images.
CVSS 5.4
CVE-2025-65675 NOMISEC MEDIUM WRITEUP
Classroomio LMS 0.1.13 - XSS
Stored Cross site scripting (XSS) vulnerability in Classroomio LMS 0.1.13 allows authenticated attackers to execute arbitrary code via crafted SVG profile pictures.
CVSS 5.4
CVE-2025-65670 NOMISEC MEDIUM WRITEUP
classroomio <0.1.13 - Info Disclosure
An Insecure Direct Object Reference (IDOR) in classroomio 0.1.13 allows students to access sensitive admin/teacher endpoints by manipulating course IDs in URLs, resulting in unauthorized disclosure of sensitive course, admin, and student data. The leak occurs momentarily before the system reverts to a normal state restricting access.
CVSS 4.3