7039 matches found
accounts.learninga-z.com XSS vulnerability
Vulnerable URL: https://accounts.learninga-z.com/accountsweb/account/login.do Details: Description| Value ---|--- Patched:| No Latest check for patch:| 27.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| Unknown / Not calculated VIP website status:| No Check...
Learning colors for kids - Base64 encoded String, WebView code execution vulnerabilities
HackApp vulnerability scanner discovered that application Learning colors for kids published at the 'play' market has multiple vulnerabilities...
ABC Learning letters toddlers - Dangerous filesystem permissions, Insecure KeyStore vulnerabilities
HackApp vulnerability scanner discovered that application ABC Learning letters toddlers published at the 'play' market has multiple vulnerabilities...
[SECURITY] Fedora 23 Update: moodle-2.9.6-1.fc23
Moodle is a course management system CMS - a free, Open Source software package designed using sound pedagogical principles, to help educators crea te effective online learning communities...
Chamlio LMS Cross-Site Scripting Vulnerability
Chamilo is an open source e-learning and content management system. A cross-site scripting vulnerability exists in Chamilo LMS, which allows remote attackers to inject malicious script code into the client side of the affected application module...
eFront Learning CMS Cross-Site Scripting Vulnerability
eFront is an online learning system. A cross-site scripting vulnerability exists in eFront. A remote attacker can exploit the vulnerability to inject malicious script code into the affected application...
eFront Learning CMS Cross-Site Scripting Vulnerability (CNVD-2016-03584)
eFront is an online learning system. A cross-site scripting vulnerability exists in eFront. Because the program fails to properly filter user-supplied input, an attacker can exploit the vulnerability to steal cookie-based authentication information and execute arbitrary script in the browser...
[SECURITY] Fedora 24 Update: moodle-3.0.4-1.fc24
Moodle is a course management system CMS - a free, Open Source software package designed using sound pedagogical principles, to help educators crea te effective online learning communities...
Protocol Learning and Stateful Fuzzing: Pulsar
Pulsar is a network fuzzer with automatic protocol learning and simulation capabilites. The tool allows to model a protocol through machine learning techniques, such as clustering and hidden Markov models. These models can be used to simulate communication between Pulsar and a real client or serv...
Whitewidow - SQL Vulnerability Scanner
Whitewidow is an open source automated SQL vulnerability scanner, that is capable of running through a file list, or can scrape Google for potential vulnerable websites. It allows automatic file formatting, random user agents, IP addresses, server information, multiple SQL injection syntax, and a...
Automated SQL Vulnerability Scanner: Whitewidow
Open Source Automated SQL Vulnerability Scanner Whitewidow is an open source automated SQL vulnerability scanner, that is capable of running through a file list, or can scrape Google for potential vulnerable websites. It allows automatic file formatting, random user agents, IP addresses, server...
MIT builds Artificial Intelligence system that can detect 85% of Cyber Attacks
In Brief What if we could Predict when a cyber attack is going to occur before it actually happens and prevent it? Isn't it revolutionary idea for Internet Security? Security researchers at MIT have developed a new Artificial Intelligence-based cyber security platform, called 'AI2,' which has the...
Timber E-learning在线培训系统网校版 Search.aspx 参数select SQL注入漏洞
No description provided by source...
Timber E-learning在线培训系统 Type_List.aspx 参数typeid SQL注入漏洞
0x01 框架介绍 相关厂商: 上海天柏信息科技有限公司 公开时间: 2016-01-11 漏洞类型: SQL注射漏洞 官方主页: http://www.timber2005.com/ 案例:http://www.timber2005.com/Customer.html 0x02 漏洞细节 http://.../WebOrg/TypeList.aspx?typeid=1 0x03 修复方案 1、过滤漏洞文件参数 2、使用加速乐等防护产品...
Timber E-learning在线考试系统后台 /system/Dep_Right.aspx 参数DEP_NAME2 SQL注入漏洞
0x01漏洞简介 Timber E-learning在线考试系统的后台/system/DepRight.aspx对参数DEPNAME2过滤不严格,导致出现注入漏洞。远程攻击者先需要注册一个用户,登陆后台后可以利用这些漏洞执行SQL指令。该漏洞利用的步骤如下: 1访问页面/usercontrol/ajax.aspx输入用户名密码,进行登陆 http://www..com/usercontrol/ajax.aspx post: Action=post&username=&pwd=&func=Login 登陆成功,将返回true,否则返回false 2登陆成功后,可以利用注入漏洞执行SQL指令...
promotion-sociale-marche.be XSS vulnerability
Vulnerable URL: http://www.promotion-sociale-marche.be/e-learning/claroline/backends/download.php?url=aHR0cDovL2cuZTxzdmcgb25sb2FkPWFsZXJ0KCJYU1NQT1NFRCIpPg==%3D=true=TOUS&7880348a71b083f9544b8331e92830aa=de5c42b513f83b302438c4e30c6df000 Details: Description| Value ---|--- Patched:| No Latest che...
Kids Games Learning Math Basic - Customized SSL, MIT license, WebView code execution vulnerabilities
HackApp vulnerability scanner discovered that application Kids Games Learning Math Basic published at the 'play' market has multiple vulnerabilities...
Third Grade Learning Games - Base64 encoded String, Exported ContentProvider, WebView code execution vulnerabilities
HackApp vulnerability scanner discovered that application Third Grade Learning Games published at the 'play' market has multiple vulnerabilities...
Learn the alphabet with Zou - Exported components, External URLs, Native code usage vulnerabilities
HackApp vulnerability scanner discovered that application Learn the alphabet with Zou published at the 'play' market has multiple vulnerabilities...
Preschool Learning Games Train - Base64 encoded String, Exported ContentProvider, WebView code execution vulnerabilities
HackApp vulnerability scanner discovered that application Preschool Learning Games Train published at the 'play' market has multiple vulnerabilities...