CVE-2025-8322

The e-School from Ventem has a Missing Authorization vulnerability, allowing remote attackers with regular privilege to access administrator functions, including creating, modifying, and deleting accounts. They can even escalate any account to system administrator privilege.

More information : https://www.twcert.org.tw/en/cp-139-10305-2eca0-2.html