8 matches found
Academy Learning Management System <5.9.1 - Cross-Site Scripting
Academy Learning Management System before 5.9.1 contains a cross-site scripting vulnerability via the Search parameter. An attacker can inject arbitrary script in the browser of an unsuspecting user in the context of the affected site. This can allow the attacker to steal cookie-based...
CVE-2022-38553
Academy Learning Management System before v5.9.1 was discovered to contain a reflected cross-site scripting XSS vulnerability via the Search parameter...
CVE-2025-59562
CVE-2025-59562 concerns the Academy LMS WordPress plugin. The issue is described as an Insecure Direct Object Reference / Missing Authorization (Authorization Bypass Through User-Controlled Key) that affects Academy LMS versions up to 3.3.4. Patch status in the CVE entry shows a fix, with the aff...
Academy Learning Management System 跨站脚本漏洞
Academy Learning Management System is an Academy Learning Management System from the Creativeitem team. A security vulnerability exists in Academy Learning Management System versions prior to v5.10, which can be exploited by an attacker to create arbitrary pages...
Academy Learning Management System Reflective Cross-Site Scripting Vulnerability
Academy Learning Management System is an Academy Learning Management System from the Creativeitem team. The vulnerability is caused by the lack of effective filtering and escaping of user-supplied data in the Search parameter, which could be exploited to launch a reflective cross-site scripting...
CVE-2022-38553
Academy Learning Management System before v5.9.1 was discovered to contain a reflected cross-site scripting XSS vulnerability via the Search parameter...
CVE-2022-38553
Academy Learning Management System before v5.9.1 was discovered to contain a reflected cross-site scripting XSS vulnerability via the Search parameter...
PT-2022-24451 · Unknown · Academy Learning Management System
Name of the Vulnerable Software and Affected Versions: Academy Learning Management System versions prior to 5.9.1 Description: The issue is related to a reflected cross-site scripting XSS vulnerability. This vulnerability occurs via the Search parameter, allowing potential attackers to inject...