CVE-2026-25885 | THREATINT

Description

PolarLearn is a free and open-source learning program. In 0-PRERELEASE-16 and earlier, the group chat WebSocket at wss://polarlearn.nl/api/v1/ws can be used without logging in. An unauthenticated client can subscribe to any group chat by providing a group UUID, and can also send messages to any group. The server accepts the message and stores it in the group’s chatContent, so this is not just a visual spam issue.

PUBLISHED Reserved 2026-02-06 | Published 2026-02-09 | Updated 2026-02-09 | Assigner GitHub_M

CRITICAL: 10.0CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:L/SC:H/SI:H/SA:L

Problem types

CWE-285: Improper Authorization

CWE-306: Missing Authentication for Critical Function

Product status

< 0-PRERELEASE-16

affected

References

github.com/...rLearn/security/advisories/GHSA-gvjm-5pw7-6c8c

github.com/...ommit/3ba588fda0d3f8e238483a20772719f27e52e79f

cve.org (CVE-2026-25885)

nvd.nist.gov (CVE-2026-25885)

Download JSON