zcxlighthouse/CVE-2025-70029

## CVE-2025-70029
[CVE ID]
CVE-2025-70029
[PRODUCT]
SunbirdEd-portal
[VERSION]
v1.13.4
[PROBLEM TYPE]
Improper Certificate Validation (CWE-295)
[DESCRIPTION]
The application disables TLS/SSL certificate validation by setting 'rejectUnauthorized': false in HTTP request options, which allows man-in-the-middle attackers to spoof servers and intercept sensitive data. This weakness is classified as CWE-295: Improper Certificate Validation.
	[CVE ID]
	CVE-2025-70029
	[PRODUCT]
	SunbirdEd-portal
	[VERSION]
	v1.13.4
	[PROBLEM TYPE]
	Improper Certificate Validation (CWE-295)
	[DESCRIPTION]
	The application disables TLS/SSL certificate validation by setting 'rejectUnauthorized': false in HTTP request options, which allows man-in-the-middle attackers to spoof servers and intercept sensitive data. This weakness is classified as CWE-295: Improper Certificate Validation.
No results found