Codidact QPixel Suggested Edit Visibility Vulnerability in Private Categories

Vulnerability

A vulnerability exists in Codidact QPixel, a community knowledge-sharing software, where suggested edits in private or limited-visibility categories can be accessed by unprivileged or anonymous users through the suggested edit queue. This issue affects all versions of QPixel and has not been patched yet. Users are advised not to rely on private categories for sensitive information.

Impact

This vulnerability allows unprivileged or anonymous users to view suggested edits in private or limited-visibility categories, potentially exposing sensitive information or editorial changes that should remain confidential.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

6.4

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

6.4

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Codidact QPixel Suggested Edit Visibility Vulnerability in Private Categories

Vulnerability

Impact

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating