CVE-2026-25812

Vulnerability Description

PlaciPy is a placement management system designed for educational institutions. In version 1.0.0, the application enables credentialed CORS requests but does not implement any CSRF protection mechanism.

Vulnerability Details

Published Date

February 09, 2026

Last Modified

February 10, 2026

CWE ID

CWE-352

Source

NVD

Vendor

Praskla-Technology

Product

assessment-placipy

External References

https://github.com/Praskla-Technology/assessment-placipy/security/advisories/GHSA-99xx-fc63-wc39

Vulnerability Description

Vulnerability Details

External References

Discussion (0)

Add Comment