An issue was discovered in Overhang.IO (tutor-open-edx) (overhangio/tutor) 20.0.2 allowing local unauthorized attackers to gain access to sensitive information due to the absence of proper cache-control HTTP headers and client-side session checks.
Products Affected
| Vendor | Product | Version |
|---|---|---|
| edly | tutor | 20.0.2 |