6 matches found
EUVD-2012-5373
Malware in sbrugna...
CVE-2012-5168
CVE-2012-5168 affects ATutor AContent prior to 1.2-1. It enables remote attackers to modify arbitrary user passwords or category names by sending crafted requests to (1) user/index_inline_editor_submit.php or (2) course_category/index_inline_editor_submit.php. The vulnerability arises from insuff...
ATutor 1.2 - Multiple Vulnerabilities
Advisory ID: HTB23117 Product: AContent Vendor: ATutor Vulnerable Versions: 1.2 and probably prior Tested Version: 1.2 Vendor Notification: September 26, 2012 Public Disclosure: October 17, 2012 Vulnerability Type: SQL Injection CWE-89, Improper Authentication CWE-287, Cross-Site Scripting CWE-79...
ATutor 1.2 - Multiple Vulnerabilities
ATutor 1.2 - Multiple Vulnerabilities Advisory ID: HTB23117 Product: AContent Vendor: ATutor Vulnerable Versions: 1.2 and probably prior Tested Version: 1.2 Vendor Notification: September 26, 2012 Public Disclosure: October 17, 2012 Vulnerability Type: SQL Injection CWE-89, Improper Authenticatio...
Multiple vulnerabilities in AContent
Advisory ID: HTB23117 Product: AContent Vendor: ATutor Vulnerable Versions: 1.2 and probably prior Tested Version: 1.2 Vendor Notification: September 26, 2012 Public Disclosure: October 17, 2012 Vulnerability Type: SQL Injection CWE-89, Improper Authentication CWE-287, Cross-Site Scripting CWE-79...
ATutor AContent 1.2 XSS / Authentication / SQL Injection
Advisory ID: HTB23117 Product: AContent Vendor: ATutor Vulnerable Versions: 1.2 and probably prior Tested Version: 1.2 Vendor Notification: September 26, 2012 Public Disclosure: October 17, 2012 Vulnerability Type: SQL Injection CWE-89, Improper Authentication CWE-287, Cross-Site Scripting CWE-79...