CVE-2025-69727

MEDIUM

INDEX-EDUCATION PRONOTE <2025.2.8 - Info Disclosure

Title source: llm

Exploitation Summary

EIP tracks 2 public exploits for CVE-2025-69727. PoCs published by XiaomingX, 0xZeroSec.

AI-analyzed exploit summary The repository contains only a minimal README.md file with the CVE identifier and no functional exploit code or technical details. It appears to be a placeholder or stub.

Description

An Incorrect Access Control vulnerability exists in INDEX-EDUCATION PRONOTE prior to 2025.2.8. The affected components (index.js and composeUrlImgPhotoIndividu) allow the construction of direct URLs to user profile images based solely on predictable identifiers such as user IDs and names. Due to missing authorization checks and lack of rate-limiting when generating or accessing these URLs, an unauthenticated or unauthorized actor may retrieve profile pictures of users by crafting requests with guessed or known identifiers.

Exploits (2)

github STUB 10 stars

by XiaomingX · pythonpoc

https://github.com/XiaomingX/data-cve-poc-py-v1/tree/main/2025/CVE-2025-69727

View Code ZIP pw:eip

The repository contains only a minimal README.md file with the CVE identifier and no functional exploit code or technical details. It appears to be a placeholder or stub.

Classification

Stub 95%

Attack Type

Other

Complexity

Trivial

Reliability

Theoretical

Target: unknown

No auth needed

MITRE ATT&CK

T1190 - Exploit Public-Facing Application

devstral-2 · analyzed Mar 17, 2026 Full analysis →

nomisec WORKING POC 2 stars

by 0xZeroSec · poc

https://github.com/0xZeroSec/CVE-2025-69727

View Code ZIP pw:eip

The PoC demonstrates an Incorrect Access Control vulnerability in INDEX-EDUCATION PRONOTE, allowing unauthenticated users to retrieve profile images by crafting URLs with predictable identifiers. The provided JavaScript code iterates over a list of users and constructs direct URLs to their profile images using the `composeUrlFichierExterne` function.

Classification

Working Poc 90%

Attack Type

Info Leak

Complexity

Trivial

Reliability

Reliable

Target: INDEX-EDUCATION PRONOTE < 2025.2.8

No auth needed

Prerequisites: list of user IDs and names

MITRE ATT&CK

T1005 - Data from Local System T1552 - Unsecured Credentials

devstral-2 · analyzed Apr 28, 2026 Full analysis →

References (2)

Core 2

Core References

https://demo.index-education.net/pronote

https://github.com/0xZeroSec/CVE-2025-69727

Scores

CVSS v3 5.3

EPSS 0.0024

EPSS Percentile 15.2%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

CISA SSVC

Vulnrichment

Exploitation poc

Automatable yes

Technical Impact partial

Details

CWE

CWE-284 CWE-639

Status published

Published Mar 16, 2026

Tracked Since Mar 17, 2026