Lucene search
K

8 matches found

RedhatCVE
RedhatCVE
added 2026/02/04 7:27 p.m.5 views

CVE-2026-24670

The Open eClass platform formerly known as GUnet eClass is a complete course management system. Prior to version 4.2, a broken access control vulnerability allows authenticated students to create new course units, an action normally restricted to higher-privileged roles. This issue has been patch...

6.5CVSS5.3AI score0.00207EPSS
Exploits1References1
NVD
NVD
added 2026/02/03 6:16 p.m.10 views

CVE-2026-24670

The Open eClass platform formerly known as GUnet eClass is a complete course management system. Prior to version 4.2, a broken access control vulnerability allows authenticated students to create new course units, an action normally restricted to higher-privileged roles. This issue has been patch...

6.5CVSS0.00207EPSS
Exploits1References1
EUVD
EUVD
added 2026/02/03 4:56 p.m.4 views

EUVD-2026-5239

The Open eClass platform formerly known as GUnet eClass is a complete course management system. Prior to version 4.2, a broken access control vulnerability allows authenticated students to create new course units, an action normally restricted to higher-privileged roles. This issue has been patch...

6.5CVSS5.3AI score0.00207EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2026/02/03 12:0 a.m.7 views

PT-2026-6202

Name of the Vulnerable Software and Affected Versions Open eClass versions prior to 4.2 Description The Open eClass platform, previously known as GUnet eClass, is a course management system. A broken access control issue permits authenticated students to create new course units, a function...

6.5CVSS5.4AI score0.00207EPSS
Exploits1References5
CNNVD
CNNVD
added 2026/02/03 12:0 a.m.6 views

Open eClass 访问控制错误漏洞

Open eClass is an e-classroom system developed by the Greek Universities Network. Versions of Open eClass prior to 4.2 contained a security vulnerability related to access control. This vulnerability resulted from improper access control mechanisms, which could allow authenticated students to...

6.5CVSS5.8AI score0.00207EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2026/01/09 11:12 a.m.7 views

CVE-2016-10400

Directory Traversal exists in ATutor before 2.2.2 via the icon parameter to /mods/core/courses/users/createcourse.php. The attacker can read an arbitrary file by visiting getcourseicon.php?id= after the traversal attack...

7.5CVSS6.9AI score0.01937EPSS
Exploits1References1
CNVD
CNVD
added 2016/11/14 12:0 a.m.2 views

Atutor Cross-Site Request Forgery Vulnerability

ATutor is an open source Web-based learning content management system LCMS developed by the ATutor team. The system includes teaching content management, forums, chat rooms and other modules. A cross-site request forgery vulnerability exists in the /createcourse.php page in ATutor version 2.2.2,...

6.9AI score
Exploits0References1
CNVD
CNVD
added 2016/08/03 12:0 a.m.3 views

Atutor Arbitrary File Disclosure Vulnerability

ATutor is ATutor team developed a set of open source Web-based learning content management system . An arbitrary file disclosure vulnerability exists in Atutor. When saving data information, due to the "icon" HTTP POST passed to the "/mods/core/courses/users/createcourse.php" script, which fails ...

6.8AI score
Exploits0References1
Rows per page
Query Builder