121 matches found
CVE-2023-3752 Creativeitem Academy LMS courses cross site scripting
A vulnerability was found in Creativeitem Academy LMS 5.15. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /home/courses. The manipulation of the argument sortby leads to cross site scripting. The attack may be launched remotely. VDB-234422 is t...
CVE-2023-3752
CVE-2023-3752 describes a cross-site scripting vulnerability in Creativeitem Academy LMS 5.15. The issue arises from manipulating the sort_by parameter in the /home/courses functionality, enabling remote exploitation via the network. Affected component: the /home/courses logic within Creativeitem...
PT-2023-26017 · Creativeitem · Creativeitem Atlas Business Directory Listing
Name of the Vulnerable Software and Affected Versions: Creativeitem Atlas Business Directory Listing version 2.13 Description: A vulnerability was found in the software, classified as problematic, affecting some unknown functionality of the file /home/search. The manipulation of the search string...
Creativeitem Academy-LMS 跨站脚本漏洞
Creativeitem Academy-LMS is an online learning platform from Creativeitem, Inc. A cross-site scripting vulnerability exists in Creativeitem Academy LMS version 5.15, which stems from a cross-site scripting XSS vulnerability in the parameter pair parameter sortby...
PT-2023-26007 · Unknown · Creativeitem Academy Lms
Name of the Vulnerable Software and Affected Versions: Creativeitem Academy LMS version 5.15 Description: A vulnerability was found in the software, affecting some unknown functionality of the file /home/courses. The manipulation of the sort by argument leads to cross-site scripting. The attack m...
PT-2023-26009 · Unknown · Creativeitem Mastery Lms
Name of the Vulnerable Software and Affected Versions: Creativeitem Mastery LMS version 1.2 Description: A problematic vulnerability has been found in Creativeitem Mastery LMS. This issue affects an unknown part of the file /browse. The manipulation of the argument search/featured/recommended/ski...
Creativeitem Mastery LMS 跨站脚本漏洞
Creativeitem Mastery LMS is an online subscription based LMS software from Creativeitem Bangladesh. A cross-site scripting vulnerability exists in Creativeitem Mastery LMS version 1.2, which stems from a cross-site scripting XSS vulnerability in the parameter search/featured/recommended/skill...
Creativeitem Ekushey Project Manager CRM 跨站脚本漏洞
Creativeitem Ekushey Project Manager CRM is a project management application from Creativeitem Bangladesh. A cross-site scripting vulnerability exists in Creativeitem Ekushey Project Manager CRM version 5.0, which stems from a cross-site scripting XSS vulnerability in the parameter message...
PT-2023-26014 · Creativeitem · Ekushey Project Manager Crm
Name of the Vulnerable Software and Affected Versions: Creativeitem Ekushey Project Manager CRM version 5.0 Description: A problematic vulnerability was found in the software, affecting an unknown function of the file /index.php/client/message/message read/xxxxxxxxrandom-msg-hash. The manipulatio...
Mastery LMS 1.2 Cross Site Scripting
Exploit Title: Mastery LMS 1.2 - Reflected XSS Exploit Author: CraCkEr Date: 09/07/2023 Vendor: Creativeitem Vendor Homepage: https://creativeitem.com/ Software Link: https://demo.creativeitem.com/mastery/ Tested on: Windows 10 Pro Impact: Manipulate the content of the site Description Allow...
Academy LMS 5.15 Cross Site Scripting
Exploit Title: Academy LMS 5.15 - Reflected XSS Exploit Author: CraCkEr Date: 09/07/2023 Vendor: Creativeitem Vendor Homepage: https://creativeitem.com/ Software Link: https://demo.creativeitem.com/academy/ Tested on: Windows 10 Pro Impact: Manipulate the content of the site Description Allow...
Atlas Business Directory Listing 2.13 Cross Site Scripting
Exploit Title: Atlas Business Directory Listing 2.13 - Reflected XSS Exploit Author: CraCkEr Date: 09/07/2023 Vendor: Creativeitem Vendor Homepage: https://creativeitem.com/ Software Link: https://demo.creativeitem.com/atlas/ Tested on: Windows 10 Pro Impact: Manipulate the content of the site...
Ekushey Project Manager CRM 5.0 Cross Site Scripting
Exploit Title: Ekushey Project Manager CRM 5.0 - Stored XSS Exploit Author: CraCkEr Vendor: Creativeitem Vendor Homepage: https://creativeitem.com/ Software Link: https://demo.creativeitem.com/ekushey/ Tested on: Windows 10 Pro Impact: Manipulate the content of the site Description Allow Attacker...
CreativeItem Academy Learning Management System 5.14 Cross Site Scripting
┌┌───────────────────────────────────────────────────────────────────────────────────────┐ ││ C r a C k E r ┌┘ ┌┘ T H E C R A C K O F E T E R N A L M I G H T ││ └───────────────────────────────────────────────────────────────────────────────────────┘┘ ┌──── From The Ashes and Dust Rises An...
Academy LMS 5.11 Cross Site Scripting
┌┌───────────────────────────────────────────────────────────────────────────────────────┐ ││ C r a C k E r ┌┘ ┌┘ T H E C R A C K O F E T E R N A L M I G H T ││ └───────────────────────────────────────────────────────────────────────────────────────┘┘ ┌──── From The Ashes and Dust Rises An...
Academy Learning Management System 跨站脚本漏洞
Academy Learning Management System is an Academy Learning Management System from the Creativeitem team. The vulnerability is caused by the lack of effective filtering and escaping of user-supplied data in the Search parameter, which could be exploited to launch a reflective cross-site scripting...
Exploit for Cross-site Scripting in Creativeitem Academy_Learning_Management_System
CVE-2022-38553 CROSS SITE SCRIPTING XSS ON "ACADEMY LEARNING...
Creativeitem Academy-LMS Cross-Site Scripting Vulnerability
Creativeitem Academy-LMS, an online learning platform from Creativeitem, Inc. A cross-site scripting vulnerability exists in Creativeitem Academy-LMS v4.3, which stems from a lack of data validation filtering of user-supplied data and output in the SEO panel. An attacker could exploit this...
Creativeitem Academy-LMS 跨站脚本漏洞
Creativeitem Academy-LMS, an online learning platform from Creativeitem, Inc. A cross-site scripting vulnerability exists in Creativeitem Academy-LMS v4.3, which stems from a lack of data validation filtering of user-supplied data and output in the SEO panel. An attacker could exploit this...
Ekushey Project Manager CRM 3.1 Cross Site Scripting
Exploit Title: Ekushey Project Manager CRM 3.1 - Cross-site Scripting Date: 2018-10-16 Exploit Author: Ismail Tasdelen Vendor Homepage: http://creativeitem.com/ Software Link : http://creativeitem.com/demo/ekushey/ Software : Ekushey Project Manager CRM Version : 3.1 Vulernability Type : Cross-si...