Arbitrary Password Reset Vulnerability in MicroXia Online Learning Cloud Service Platform

Micro Xia Online Learning Cloud Service Platform is an online learning system based on B/S architecture. There exists an arbitrary password reset vulnerability in Weixia Online Learning Cloud Service Platform. An attacker can use the vulnerability to reset any user's password and obtain sensitive...

XXE Vulnerability in KnowledgeSort.asmx File of MicroXia Online Learning Platform

Micro Xia Online Learning Platform is an online education system based on B/S architecture. A XXE vulnerability exists in the KnowledgeSort.asmx file of MicroXia Online Learning Platform, which can be exploited by an attacker to remotely read arbitrary files from the server...

XXE Vulnerability in Columns.asmx File of Microxia Online Learning Platform

Micro Xia Online Learning Platform is an online education system based on B/S architecture. A XXE vulnerability exists in the Columns.asmx file of MicroXia Online Learning Platform. An attacker can exploit the vulnerability to remotely read arbitrary files on the server...

Arbitrary File Write Vulnerability in HelpEditer.aspx File of MicroXia Online Learning Platform

Micro Xia Online Learning Platform is an online education system based on B/S architecture. A write shell vulnerability exists in the 'HelpEditer.aspx' file of MicroXia Online Learning Platform. It allows remote attackers to gain server privileges by constructing a malicious data stream to write ...

Unauthorized Modification of Arbitrary Files Vulnerability in 'DataBaseBackup_Edit.aspx' of MicroXia E-learning Platform

Micro Xia Online Learning Platform is an online education system based on B/S architecture. An unauthorized modification of arbitrary files vulnerability exists in 'DataBaseBackupEdit.aspx' of the Weixia Online Learning Platform. An attacker using this vulnerability to modify the db.config file i...

Arbitrary file upload vulnerability in the Uploading.ashx file of MicroXia e-learning platform

Micro Xia Online Learning Platform is an online education system based on B/S architecture. An arbitrary file uploading vulnerability exists in the Uploading.ashx file of the Weixia Online Learning Platform. It allows attackers to exploit the vulnerability to upload webshell and gain server...