Lucene search
K

889 matches found

Exploit DB
Exploit DB
added 2017/12/09 12:0 a.m.23 views

Advance Online Learning Management Script 3.1 - 'subcatid' / 'popcourseid' SQL Injection

Exploit Title: Advance Online Learning Management Script 3.1 - SQL Injection Dork: N/A Date: 08.12.2017 Vendor Homepage: https://www.phpscriptsmall.com/ Software Link: https://www.phpscriptsmall.com/product/online-learning-management-script/ Demo: http://thavasu.com/demo/onlineeducation/ Version:...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2017/08/24 12:0 a.m.41 views

BlackBoard LMS 9.1.140152.0 XSS / File Upload

Document Title: =============== BlackBoard LMS 9.1 9.1.140152.0 Stored XSS/Arbitrary File Upload Product Description: =============== The Learning Management System has changed the way students and educators interact. Blackboard's LMS solutions offer much more than simple, classroom interaction,...

7.4AI score
Exploits0
CNVD
CNVD
added 2017/03/27 12:0 a.m.3 views

IBM Kenexa LMS on Cloud Cross-Site Scripting Vulnerability

IBM Kenexa LMS on Cloud is a configurable, enterprise-grade social learning management system LMS developed by IBM that integrates social networking, collaboration, and knowledge sharing capabilities. The system provides interactive features and supports users to evaluate learning content and sha...

5.4CVSS6.1AI score0.00538EPSS
Exploits0References1
OSV
OSV
added 2017/02/01 10:59 p.m.1 views

CVE-2016-8932

IBM Kenexa LMS on Cloud could allow a remote attacker to upload arbitrary files, which could allow the attacker to execute arbitrary code on the vulnerable server...

8.8CVSS6.2AI score
Exploits0References2
OSV
OSV
added 2017/02/01 10:59 p.m.3 views

CVE-2016-8933

IBM Kenexa LMS on Cloud could allow a remote attacker to traverse directories on the system. An attacker could send a specially-crafted URL request containing dot dot sequences /../ to view arbitrary files on the system...

6.5CVSS5.9AI score0.01812EPSS
Exploits0References2
OSV
OSV
added 2017/02/01 10:59 p.m.3 views

CVE-2016-8929

IBM Kenexa LMS on Cloud is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements, which could allow the attacker to view, add, modify or delete information in the back-end database...

5.4CVSS5.9AI score0.00877EPSS
Exploits0References2
OSV
OSV
added 2017/02/01 8:59 p.m.3 views

CVE-2016-6125

IBM Kenexa LMS on Cloud 13.1 and 13.2 - 13.2.4 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session...

5.4CVSS5.5AI score0.00538EPSS
Exploits0References2
OSV
OSV
added 2017/02/01 8:59 p.m.5 views

CVE-2016-6126

IBM Kenexa LMS on Cloud 13.1 and 13.2 - 13.2.4 could allow a remote attacker to traverse directories on the system. An attacker could send a specially-crafted URL request containing "dot dot" sequences /../ to view arbitrary files on the system...

6.5CVSS5.9AI score0.01812EPSS
Exploits0References2
OSV
OSV
added 2017/02/01 8:59 p.m.4 views

CVE-2016-6124

IBM Kenexa LMS on Cloud 13.1 and 13.2 - 13.2.4 could allow a remote attacker to upload arbitrary files, which could allow the attacker to execute arbitrary code on the vulnerable server...

8.8CVSS6.2AI score
Exploits0References2
CNVD
CNVD
added 2017/01/24 12:0 a.m.3 views

IBM Kenexa LMS on Cloud Arbitrary File Upload Vulnerability (CNVD-2017-01017)

IBM Kenexa LMS on Cloud is a configurable, enterprise-grade social learning management system LMS from IBM that integrates social networking, collaboration, and knowledge sharing capabilities. The system provides interactive features and supports users to evaluate learning content and share their...

8.8CVSS7.5AI score0.0186EPSS
Exploits0References1
CNVD
CNVD
added 2017/01/18 12:0 a.m.5 views

IBM Kenexa LMS on Cloud Cross-Site Scripting Vulnerability (CNVD-2017-00561)

IBM Kenexa LMS on Cloud is a configurable, enterprise-grade social learning management system LMS from IBM that integrates social networking, collaboration, and knowledge sharing capabilities. The system provides interactive features and supports users to evaluate learning content and share their...

5.4CVSS6.3AI score0.00553EPSS
Exploits0References1
CNVD
CNVD
added 2017/01/18 12:0 a.m.8 views

IBM Kenexa LMS on Cloud SQL Injection Vulnerability (CNVD-2017-00565)

IBM Kenexa LMS on Cloud is a configurable, enterprise-grade social learning management system LMS from IBM that integrates social networking, collaboration, and knowledge sharing capabilities. The system provides interactive features and supports users to evaluate learning content and share their...

7.6CVSS7.7AI score0.00969EPSS
Exploits0References1
CNVD
CNVD
added 2017/01/18 12:0 a.m.6 views

IBM Kenexa LMS on Cloud Directory Traversal Vulnerability (CNVD-2017-00566)

IBM Kenexa LMS on Cloud is a configurable, enterprise-grade social learning management system LMS from IBM that integrates social networking, collaboration, and knowledge sharing capabilities. The system provides interactive features and supports users to evaluate learning content and share their...

5.7CVSS7AI score0.01595EPSS
Exploits0References1
CNVD
CNVD
added 2016/11/24 12:0 a.m.3 views

Moodle Security Bypass Vulnerability (CNVD-2016-11545)

Moodle is a free, open-source e-learning software platform, also known as a course management system, learning management system, or virtual learning environment, developed by Dr. Martin Dougiamas of Australia. A security bypass vulnerability exists in Moodle, which can be exploited by attackers ...

5.3CVSS5.6AI score0.01196EPSS
Exploits0References1
CNVD
CNVD
added 2016/11/16 12:0 a.m.3 views

IBM Kenexa LMS on Cloud Information Disclosure Vulnerability

IBM Kenexa LMS on Cloud is a full-featured, configurable, enterprise-grade, social Learning Management System LMS that integrates social networking, collaboration, and knowledge sharing capabilities. The software provides interactive elements that support users in evaluating learning content and...

4.3CVSS6AI score0.00773EPSS
Exploits0References1
CNVD
CNVD
added 2016/11/16 12:0 a.m.2 views

IBM Kenexa LMS on Cloud Cross-Site Scripting Vulnerability

IBM Kenexa LMS on Cloud is a full-featured, configurable, enterprise-grade, social Learning Management System LMS that integrates social networking, collaboration, and knowledge sharing capabilities. The software provides interactive elements that support users in evaluating learning content and...

5.4CVSS6.7AI score0.00538EPSS
Exploits0References1
CNVD
CNVD
added 2016/11/15 12:0 a.m.3 views

IBM Kenexa LMS on Cloud Arbitrary File Upload Vulnerability

IBM Kenexa LMS on Cloud is a full-featured, configurable, enterprise-grade, social Learning Management System LMS that integrates social networking, collaboration, and knowledge sharing capabilities. The software provides interactive elements that support users in evaluating learning content and...

8.8CVSS7.8AI score0.02235EPSS
Exploits0References1
0day.today
0day.today
added 2016/11/14 12:0 a.m.27 views

ATutor 2.2.2 - Cross-Site Request Forgery Vulnerability

Exploit for php platform in category web applications Exploit Title: ATutor2.2.2 Learning Management System Cross-Site Request Forgery Add New Course Date: 13-11-2016 Software Link: https://github.com/atutor/ATutor/releases/tag/atutor222 Vendor: http://www.atutor.ca/ Exploit Author: Saravana Kuma...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2016/11/13 12:0 a.m.31 views

ATutor 2.2.2 - Cross-Site Request Forgery (Add New Course)

Exploit Title: ATutor2.2.2 Learning Management System Cross-Site Request Forgery Add New Course Date: 13-11-2016 Software Link: https://github.com/atutor/ATutor/releases/tag/atutor222 Vendor: http://www.atutor.ca/ Exploit Author: Saravana Kumar Contact: https://facebook.com/06saravanakumar...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2016/10/14 12:0 a.m.9 views

Learning Management System 0.1 - Authentication Bypass

Learning Management System 0.1 - Authentication Bypass Exploit Title.............. Learning Management System Auth Bypass Google Dork................ N/A Date....................... 14/10/2016 Exploit Author............. lahilote Vendor Homepage...

0.6AI score
Exploits0
Rows per page
Query Builder