36 matches found
Kernel-Dojo-Labs
Kernel-Dojo Lab An interactive practice environment for the...
CVE-2026-32932
Chamilo LMS is a learning management system. Prior to 1.11.38 and 2.0.0-RC.3, an Open Redirect vulnerability in the session course edit page allows an attacker to redirect an authenticated administrator to an arbitrary external URL after saving coach assignment changes. The redirect also leaks th...
CVE-2026-32932
Chamilo LMS is a learning management system. Prior to 1.11.38 and 2.0.0-RC.3, an Open Redirect vulnerability in the session course edit page allows an attacker to redirect an authenticated administrator to an arbitrary external URL after saving coach assignment changes. The redirect also leaks th...
CVE-2026-32932 Chamilo LMS has an Open Redirect via Unvalidated 'page' Parameter in Session Course Edit
Chamilo LMS is a learning management system. Prior to 1.11.38 and 2.0.0-RC.3, an Open Redirect vulnerability in the session course edit page allows an attacker to redirect an authenticated administrator to an arbitrary external URL after saving coach assignment changes. The redirect also leaks th...
MAL-2025-43841 Malicious code in coach-improve-screen (npm)
The package coach-improve-screen was found to contain malicious code...
Malicious code in recent-coach-suddenly (npm)
The package recent-coach-suddenly was found to contain malicious code...
MAL-2025-43839 Malicious code in coach-fix-composed (npm)
The package coach-fix-composed was found to contain malicious code...
MAL-2025-43840 Malicious code in coach-gas-police (npm)
The package coach-gas-police was found to contain malicious code...
Malicious code in coach-gas-police (npm)
The package coach-gas-police was found to contain malicious code...
Malicious code in coach-fix-composed (npm)
The package coach-fix-composed was found to contain malicious code...
Malicious code in coach-improve-screen (npm)
The package coach-improve-screen was found to contain malicious code...
MAL-2025-45777 Malicious code in recent-coach-suddenly (npm)
The package recent-coach-suddenly was found to contain malicious code...
PT-2025-3875 · Unknown · Liujianview Gymxmjpa
Name of the Vulnerable Software and Affected Versions: liujianview gymxmjpa version 1.0 Description: A critical vulnerability has been found in the CoachController function of the file src/main/java/com/liujian/gymxmjpa/controller/CoachController.java. The manipulation of the coachName argument...
MAL-2024-2158 Malicious code in down_load_ebook_coacher_avec_l_appreciative_inquiry_by_jean_pages_l68qu (npm)
--- -= Per source details. Do not edit below this line.=-...
CVE-2024-3627
CVE-2024-3627 affects Wheel of Life: Coaching and Assessment Tool for Life Coach (WordPress). The WordPress plugin versions up to 1.1.7 are vulnerable due to missing authorization checks in AjaxFunctions.php, allowing authenticated attackers with subscriber-level access or higher to delete arbitr...
coach-ability.de Cross Site Scripting vulnerability OBB-3905115
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
WordPress Plugin Tutor LMS 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress is a blogging platform developed in the PHP language that supports personal blogs on PHP and MySQL servers.WordPress plugin is an application...
coach-psy.com Improper Access Control vulnerability OBB-3795985
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
WordPress Bootstrap Coach Theme < 1.1.2 is vulnerable to Cross Site Scripting (XSS)
Software Bootstrap Coach Type Theme Vulnerable versions 1.1.2 Fixed in 1.1.2 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 56159c2dd7f6 Credits Rafie Muhammad Patchstack Required...
businesscoachmichaeldill.com Cross Site Scripting vulnerability OBB-3329877
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...