CVE-2025-48372 | schule111 Schule up to 1.0.0 One-Time Password generateOTP weak password (GHSA-6c48-67xx-vqgc)
A vulnerability labeled as critical has been found in schule111 Schule up to 1.0.0. Affected is the function generateOTP of the component One-Time Password Handler. Executing manipulation can lead to weak password requirements.
This vulnerability is tracked as CVE-2025-48372. The attack can be launched remotely. No exploit exists.
The affected component should be upgraded.