570 matches found
ILIAS LMS <= 3.9.9/3.10.7 Arbitrary Edition/Info Disclosure Vulns
No description provided by source. || || || -----------------------------------------\ == -- ----------- ---------------------------- ------------------/ ME VOY A LA PLAYA!...QUE CALOoOoOoR!...Lo0oL ĄPROUD TO BE SPANISH! ---------------------...
JVN#24730765: Blackboard Vista/CE vulnerable to cross-site scripting
Blackboard Vista/CE is a learning management system LMS. Blackboard Vista/CE contains a cross-site scripting vulnerability. Impact An arbitrary script may be executed on the user's web browser. Solution Update the software Update to the latest version according to the information provided by the...
PT-2024-16300 · WordPress · Wplms Learning Management System
Name of the Vulnerable Software and Affected Versions: WPLMS Learning Management System for WordPress versions prior to 4.963 Description: The WPLMS Learning Management System for WordPress is vulnerable to arbitrary file read and deletion due to insufficient file path validation and permissions...
Moodle 2.3.9, 2.4.6 - Multiple Vulnerabilities
Moodle versions 2.3.9 and below and 2.4.6 suffer from a javascript insertion vulnerability that allows for the addition of an RSS blog. Ciaran McNally Application: Moodle http://download.moodle.org/ Versions: parameter in an rss feed is vulnerable to javascript injection. This blog post is viewab...
Moodle 2.3.82.4.5 - Multiple Vulnerabilities
Moodle 2.3.82.4.5 - Multiple Vulnerabilities Ciaran McNally Application: Moodle http://download.moodle.org/ Versions: parameter in an rss feed is vulnerable to javascript injection. This blog post is viewable by everyone on moodle and you can link to it directly. Upon clicking the "Link to origin...
CVE-2013-3605
Cross-site request forgery CSRF vulnerability in Coursemill Learning Management System LMS 6.6 allows remote attackers to hijack the authentication of arbitrary users via vectors related to cookies...
CVE-2013-3601
Affected software: Coursemill Learning Management System (LMS) 6.6. Vulnerability: inadequate restriction of JSP function calls allows remote authenticated users (via Student role) to perform arbitrary JSP operations by supplying an op parameter. Impact: privilege escalation to execute restricted...
CVE-2013-3605
Cross-site request forgery CSRF vulnerability in Coursemill Learning Management System LMS 6.6 allows remote attackers to hijack the authentication of arbitrary users via vectors related to cookies...
CVE-2013-5708
CVE-2013-5708 affects Coursemill Learning Management System (LMS) 6.8. The vulnerability arises because it constructs secret tokens based on time values, which enables remote attackers to perform cross-site request forgery (CSRF) via cookie-related vectors. This is described as a different vulner...
Inquisiq R3 (LMS) - Multiple Persistent Vulnerabilities
Document Title: =============== Inquisiq R3 LMS - Multiple Persistent Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=317 Release Date: ============= 2012-01-27 Vulnerability Laboratory ID VL-ID: ==================================== 317...
PG eLms Pro vDEC_2007_01 - Multiple Blind SQL Injections
PG eLMS Pro vDEC200701 Multiple Blind SQL Injection Vulnerabilities Vendor: PilotGroup Ltd Product web page: http://www.elmspro.com Affected version: DEC200701 Summary: eLMS Pro solution is an outstanding and yet simple Learning Management system. Our product is designed for any education...
eLMS Pro SQL Injection / Cross Site Scripting
======================================= eLMS Pro SQLi and XSS Vulnerability ======================================= 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database...
eLMS Pro SQLi and XSS Vulnerability
Exploit for php platform in category web applications =================================== eLMS Pro SQLi and XSS Vulnerability =================================== 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1...
eLms Pro - SQL Injection Cross-Site Scripting
eLms Pro - SQL Injection Cross-Site Scripting ======================================= eLMS Pro SQLi and XSS Vulnerability ======================================= 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 ...
eLms Pro - SQL Injection / Cross-Site Scripting
======================================= eLMS Pro SQLi and XSS Vulnerability ======================================= 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database...
MULTIPLE ARBITRARY INFORMATION DISCLOSURE AND EDITION --ILIAS LMS <= 3.10.7/3.9.9-->
-------------------------------------------------------------------------------------- MULTIPLE ARBITRARY INFORMATION DISCLOSURE AND EDITION --ILIAS LMS = 3.10.7/3.9.9-- -------------------------------------------------------------------------------------- CMS INFORMATION: --WEB:...
ILIAS LMS <= 3.9.9/3.10.7 Arbitrary Edition/Info Disclosure Vulns
No description provided by source. || || || -----------------------------------------\ == -- ----------- ---------------------------- ------------------/ ME VOY A LA PLAYA!...QUE CALOoOoOoR!...Lo0oL ĄPROUD TO BE SPANISH! ------------------------------------...
ILIAS LMS <= 3.9.9/3.10.7 Arbitrary Edition/Info Disclosure Vulns
Exploit for unknown platform in category web applications ================================================================= ILIAS LMS WEB: http://www.ilias.de/ | |--DOWNLOAD: http://www.ilias.de/docu/goto.php?target=st22935&clientid=docu | |--DEMO: http://www.demo.ilias-support.com/ | |--CATEGORY...
atutor155-xss.txt
====================================================================== ATutor Impact: Cross Site Scripting Status: patch available ------------------------------ Affected software description: ------------------------------ Application: ATutor Version: = 1.5.5 Vendor: http://www.atutor.ca...
dokeos-xss.txt
HSC Dokeos Multiple Cross-Site Scripting Vulnerabilities Dokeos is a learning management systemused to manage e-learning. It's prone to cross-site scripting vulnerability. An attacker may leverage this issue to have arbitrary script code execute in the browser of an unsuspecting user in the conte...