Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

25 matches found

NVD
NVDadded 2026/05/11 10:16 a.m.39 views

CVE-2026-6956

ATutor is vulnerable to Reflected XSS in /install/install.php endpoint. An attacker can provide a specially crafted URL that, when opened, results in arbitrary JavaScript execution in the victim's browser. Product is no longer actively supported. Maintainers of this project were notified early...

5.1CVSS0.00391EPSS
Exploits0References2
RedhatCVE
RedhatCVEadded 2026/01/09 11:12 a.m.6 views

CVE-2016-10400

Directory Traversal exists in ATutor before 2.2.2 via the icon parameter to /mods/core/courses/users/createcourse.php. The attacker can read an arbitrary file by visiting getcourseicon.php?id= after the traversal attack...

7.5CVSS6.9AI score0.01937EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2026/01/09 10:9 a.m.6 views

CVE-2019-11446

An issue was discovered in ATutor through 2.2.4. It allows the user to run commands on the server with the teacher user privilege. The Upload Files section in the File Manager field contains an arbitrary file upload vulnerability via upload.php. The $IllegalExtensions value only lists lowercase a...

8.8CVSS7.3AI score0.07948EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2026/01/09 9:54 a.m.7 views

CVE-2020-23341

A reflected cross site scripting XSS vulnerability in the /header.tmpl.php component of ATutor 2.2.4 allows attackers to execute arbitrary web scripts or HTML via a crafted payload...

6.1CVSS5.7AI score0.00827EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2026/01/07 9:32 a.m.5 views

CVE-2019-16114

In ATutor 2.2.4, an unauthenticated attacker can change the application settings and force it to use his crafted database, which allows him to gain access to the application. Next, he can change the directory that the application uploads files to, which allows him to achieve remote code execution...

9.8CVSS8.1AI score0.04783EPSS
Exploits1References1
EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2017-6457

Malware in sbrugna...

5.4CVSS5.5AI score0.00596EPSS
Exploits1References3
EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2017-15540

Malware in sbrugna...

6.1CVSS6.3AI score0.00709EPSS
Exploits1References3
EUVD
EUVDadded 2025/10/07 12:30 a.m.4 views

EUVD-2005-2650

Malware in sbrugna...

4.3CVSS6.4AI score0.03579EPSS
Exploits1References5
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2016-1582

Malware in sbrugna...

7.5CVSS7.6AI score0.01937EPSS
Exploits1References3
EUVD
EUVDadded 2025/10/07 12:30 a.m.1 views

EUVD-2014-9559

Malware in sbrugna...

9.8CVSS9.2AI score0.02908EPSS
Exploits2References6
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2014-2131

Malware in sbrugna...

3.5CVSS6.4AI score0.01257EPSS
Exploits1References3
EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2015-7612

Malware in sbrugna...

6.1CVSS6.3AI score0.01644EPSS
Exploits3References6
EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2017-1341

Malware in sbrugna...

9.8CVSS9.5AI score0.02324EPSS
Exploits0References4
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2017-1340

Malware in sbrugna...

9.8CVSS9.5AI score0.30833EPSS
Exploits0References4
EUVD
EUVDadded 2025/10/07 12:30 a.m.4 views

EUVD-2014-9558

Malware in sbrugna...

6.5CVSS6.4AI score0.02111EPSS
Exploits2References7
EUVD
EUVDadded 2025/10/07 12:30 a.m.4 views

EUVD-2019-16717

Malware in sbrugna...

6.1CVSS6.3AI score0.00865EPSS
Exploits1References2
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2005-2955

Malware in sbrugna...

4.6CVSS6.4AI score0.00777EPSS
Exploits1References3
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2005-2954

Malware in sbrugna...

7.5CVSS6.4AI score0.01748EPSS
Exploits1References9
EUVD
EUVDadded 2025/10/07 12:30 a.m.4 views

EUVD-2019-3121

Malware in sbrugna...

8.8CVSS8.8AI score0.07948EPSS
Exploits1References3
RedhatCVE
RedhatCVEadded 2025/05/23 3:30 a.m.6 views

CVE-2023-27008

A Cross-site scripting XSS vulnerability in the function encryptpassword in login.tmpl.php in ATutor 2.2.1 allows remote attackers to inject arbitrary web script or HTML via the token parameter...

6.1CVSS5.8AI score0.01499EPSS
Exploits1References1
Rows per page
Query Builder