Lucene search
K

121 matches found

Cvelist
Cvelist
added 2023/07/19 1:31 a.m.29 views

CVE-2023-3752 Creativeitem Academy LMS courses cross site scripting

A vulnerability was found in Creativeitem Academy LMS 5.15. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /home/courses. The manipulation of the argument sortby leads to cross site scripting. The attack may be launched remotely. VDB-234422 is t...

4CVSS6.2AI score0.00312EPSS
Exploits0References2
CVE
CVE
added 2023/07/19 1:31 a.m.51 views

CVE-2023-3752

CVE-2023-3752 describes a cross-site scripting vulnerability in Creativeitem Academy LMS 5.15. The issue arises from manipulating the sort_by parameter in the /home/courses functionality, enabling remote exploitation via the network. Affected component: the /home/courses logic within Creativeitem...

6.1CVSS4.7AI score0.00312EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2023/07/19 12:0 a.m.3 views

PT-2023-26017 · Creativeitem · Creativeitem Atlas Business Directory Listing

Name of the Vulnerable Software and Affected Versions: Creativeitem Atlas Business Directory Listing version 2.13 Description: A vulnerability was found in the software, classified as problematic, affecting some unknown functionality of the file /home/search. The manipulation of the search string...

6.1CVSS4.3AI score0.00312EPSS
Exploits0References5
CNNVD
CNNVD
added 2023/07/19 12:0 a.m.3 views

Creativeitem Academy-LMS 跨站脚本漏洞

Creativeitem Academy-LMS is an online learning platform from Creativeitem, Inc. A cross-site scripting vulnerability exists in Creativeitem Academy LMS version 5.15, which stems from a cross-site scripting XSS vulnerability in the parameter pair parameter sortby...

6.1CVSS4.7AI score0.00312EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2023/07/19 12:0 a.m.5 views

PT-2023-26007 · Unknown · Creativeitem Academy Lms

Name of the Vulnerable Software and Affected Versions: Creativeitem Academy LMS version 5.15 Description: A vulnerability was found in the software, affecting some unknown functionality of the file /home/courses. The manipulation of the sort by argument leads to cross-site scripting. The attack m...

6.1CVSS4.1AI score0.00312EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2023/07/19 12:0 a.m.5 views

PT-2023-26009 · Unknown · Creativeitem Mastery Lms

Name of the Vulnerable Software and Affected Versions: Creativeitem Mastery LMS version 1.2 Description: A problematic vulnerability has been found in Creativeitem Mastery LMS. This issue affects an unknown part of the file /browse. The manipulation of the argument search/featured/recommended/ski...

6.1CVSS4.3AI score0.00312EPSS
Exploits0References6
CNNVD
CNNVD
added 2023/07/19 12:0 a.m.3 views

Creativeitem Mastery LMS 跨站脚本漏洞

Creativeitem Mastery LMS is an online subscription based LMS software from Creativeitem Bangladesh. A cross-site scripting vulnerability exists in Creativeitem Mastery LMS version 1.2, which stems from a cross-site scripting XSS vulnerability in the parameter search/featured/recommended/skill...

6.1CVSS4.7AI score0.00312EPSS
Exploits0References3
CNNVD
CNNVD
added 2023/07/19 12:0 a.m.6 views

Creativeitem Ekushey Project Manager CRM 跨站脚本漏洞

Creativeitem Ekushey Project Manager CRM is a project management application from Creativeitem Bangladesh. A cross-site scripting vulnerability exists in Creativeitem Ekushey Project Manager CRM version 5.0, which stems from a cross-site scripting XSS vulnerability in the parameter message...

6.1CVSS4.7AI score0.00317EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2023/07/19 12:0 a.m.5 views

PT-2023-26014 · Creativeitem · Ekushey Project Manager Crm

Name of the Vulnerable Software and Affected Versions: Creativeitem Ekushey Project Manager CRM version 5.0 Description: A problematic vulnerability was found in the software, affecting an unknown function of the file /index.php/client/message/message read/xxxxxxxxrandom-msg-hash. The manipulatio...

6.1CVSS4.2AI score0.00317EPSS
Exploits0References5
Packet Storm
Packet Storm
added 2023/07/11 12:0 a.m.245 views

Mastery LMS 1.2 Cross Site Scripting

Exploit Title: Mastery LMS 1.2 - Reflected XSS Exploit Author: CraCkEr Date: 09/07/2023 Vendor: Creativeitem Vendor Homepage: https://creativeitem.com/ Software Link: https://demo.creativeitem.com/mastery/ Tested on: Windows 10 Pro Impact: Manipulate the content of the site Description Allow...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2023/07/11 12:0 a.m.215 views

Academy LMS 5.15 Cross Site Scripting

Exploit Title: Academy LMS 5.15 - Reflected XSS Exploit Author: CraCkEr Date: 09/07/2023 Vendor: Creativeitem Vendor Homepage: https://creativeitem.com/ Software Link: https://demo.creativeitem.com/academy/ Tested on: Windows 10 Pro Impact: Manipulate the content of the site Description Allow...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2023/07/11 12:0 a.m.237 views

Atlas Business Directory Listing 2.13 Cross Site Scripting

Exploit Title: Atlas Business Directory Listing 2.13 - Reflected XSS Exploit Author: CraCkEr Date: 09/07/2023 Vendor: Creativeitem Vendor Homepage: https://creativeitem.com/ Software Link: https://demo.creativeitem.com/atlas/ Tested on: Windows 10 Pro Impact: Manipulate the content of the site...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2023/07/11 12:0 a.m.267 views

Ekushey Project Manager CRM 5.0 Cross Site Scripting

Exploit Title: Ekushey Project Manager CRM 5.0 - Stored XSS Exploit Author: CraCkEr Vendor: Creativeitem Vendor Homepage: https://creativeitem.com/ Software Link: https://demo.creativeitem.com/ekushey/ Tested on: Windows 10 Pro Impact: Manipulate the content of the site Description Allow Attacker...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2023/04/28 12:0 a.m.331 views

CreativeItem Academy Learning Management System 5.14 Cross Site Scripting

┌┌───────────────────────────────────────────────────────────────────────────────────────┐ ││ C r a C k E r ┌┘ ┌┘ T H E C R A C K O F E T E R N A L M I G H T ││ └───────────────────────────────────────────────────────────────────────────────────────┘┘ ┌──── From The Ashes and Dust Rises An...

6.9AI score
Exploits0
Packet Storm
Packet Storm
added 2023/01/13 12:0 a.m.243 views

Academy LMS 5.11 Cross Site Scripting

┌┌───────────────────────────────────────────────────────────────────────────────────────┐ ││ C r a C k E r ┌┘ ┌┘ T H E C R A C K O F E T E R N A L M I G H T ││ └───────────────────────────────────────────────────────────────────────────────────────┘┘ ┌──── From The Ashes and Dust Rises An...

Exploits0
CNNVD
CNNVD
added 2022/09/26 12:0 a.m.5 views

Academy Learning Management System 跨站脚本漏洞

Academy Learning Management System is an Academy Learning Management System from the Creativeitem team. The vulnerability is caused by the lack of effective filtering and escaping of user-supplied data in the Search parameter, which could be exploited to launch a reflective cross-site scripting...

6.1CVSS6.1AI score0.02316EPSS
Exploits2References6
GithubExploit
GithubExploit
added 2022/09/20 2:51 p.m.4 views

Exploit for Cross-site Scripting in Creativeitem Academy_Learning_Management_System

CVE-2022-38553 CROSS SITE SCRIPTING XSS ON "ACADEMY LEARNING...

6.1CVSS6.3AI score0.02316EPSS
Exploits2
CNVD
CNVD
added 2022/05/27 12:0 a.m.29 views

Creativeitem Academy-LMS Cross-Site Scripting Vulnerability

Creativeitem Academy-LMS, an online learning platform from Creativeitem, Inc. A cross-site scripting vulnerability exists in Creativeitem Academy-LMS v4.3, which stems from a lack of data validation filtering of user-supplied data and output in the SEO panel. An attacker could exploit this...

3.5CVSS2.1AI score0.00599EPSS
Exploits1Affected Software1
CNNVD
CNNVD
added 2022/05/25 12:0 a.m.6 views

Creativeitem Academy-LMS 跨站脚本漏洞

Creativeitem Academy-LMS, an online learning platform from Creativeitem, Inc. A cross-site scripting vulnerability exists in Creativeitem Academy-LMS v4.3, which stems from a lack of data validation filtering of user-supplied data and output in the SEO panel. An attacker could exploit this...

4.8CVSS5.6AI score0.00599EPSS
Exploits1References2
Packet Storm
Packet Storm
added 2018/10/17 12:0 a.m.43 views

Ekushey Project Manager CRM 3.1 Cross Site Scripting

Exploit Title: Ekushey Project Manager CRM 3.1 - Cross-site Scripting Date: 2018-10-16 Exploit Author: Ismail Tasdelen Vendor Homepage: http://creativeitem.com/ Software Link : http://creativeitem.com/demo/ekushey/ Software : Ekushey Project Manager CRM Version : 3.1 Vulernability Type : Cross-si...

0.3AI score0.01643EPSS
Exploits6
Rows per page
Query Builder