10 matches found
📄 Adapt Authoring Tool 0.11.3 Remote Command Execution
Adapt Authoring Tool version 0.11.3 suffers from a remote command execution vulnerability. Exploit Title: Adapt Authoring Tool 0.11.3 - Remote Command Execution RCE Date: 2024-11-24 Exploit Author: Eui Chul Chung Vendor Homepage: https://www.adaptlearning.org/ Software Link:...
Adapt Authoring Tool 0.11.3 - Remote Command Execution (RCE)
Exploit Title: Adapt Authoring Tool 0.11.3 - Remote Command Execution RCE Date: 2024-11-24 Exploit Author: Eui Chul Chung Vendor Homepage: https://www.adaptlearning.org/ Software Link: https://github.com/adaptlearning/adaptauthoring Version: 0.11.3 CVE Identifier: CVE-2024-50672 , CVE-2024-50671...
CVE-2024-50671
Incorrect access control in Adapt Learning Adapt Authoring Tool = 0.11.3 allows attackers with Authenticated User roles to obtain email addresses via the "Get users" feature. The vulnerability occurs due to a flaw in permission verification logic, where the wildcard character in permitted URLs...
CVE-2024-50672
A NoSQL injection vulnerability in Adapt Learning Adapt Authoring Tool = 0.11.3 allows unauthenticated attackers to reset user and administrator account passwords via the "Reset password" feature. The vulnerability occurs due to insufficient validation of user input, which is used as a query in...
CVE-2024-50671
Incorrect access control in Adapt Learning Adapt Authoring Tool = 0.11.3 allows attackers with Authenticated User roles to obtain email addresses via the "Get users" feature. The vulnerability occurs due to a flaw in permission verification logic, where the wildcard character in permitted URLs...
CVE-2024-50672
A NoSQL injection vulnerability in Adapt Learning Adapt Authoring Tool = 0.11.3 allows unauthenticated attackers to reset user and administrator account passwords via the "Reset password" feature. The vulnerability occurs due to insufficient validation of user input, which is used as a query in...
Adapt Authoring Tool 安全漏洞
Adapt Authoring Tool is a free and easy-to-use eLearning authoring tool from Adapt Learning open source. A security vulnerability exists in Adapt Authoring Tool that stems from the inclusion of a NoSQL injection vulnerability. An unauthenticated attacker can reset user and administrator account...
Adapt Authoring Tool 安全漏洞
Adapt Authoring Tool is a free and easy-to-use eLearning authoring tool from Adapt Learning open source. A security vulnerability exists in Adapt Authoring Tool that stems from incorrect access control and allows an attacker with an authenticated user role to obtain an email address via the Get...
PT-2024-34387 · Adapt Learning · Adapt Learning Adapt Authoring Tool
Name of the Vulnerable Software and Affected Versions: Adapt Learning Adapt Authoring Tool versions = 0.11.3 Description: The issue is related to incorrect access control, allowing attackers with Authenticated User roles to obtain email addresses via the "Get users" feature. This occurs due to a...
PT-2024-34388 · Adapt Learning +1 · Adapt Learning Adapt Authoring Tool +1
Name of the Vulnerable Software and Affected Versions: Adapt Learning Adapt Authoring Tool versions = 0.11.3 Description: A NoSQL injection issue allows unauthenticated attackers to reset user and administrator account passwords via the "Reset password" feature. This occurs due to insufficient...