4 matches found
Forma LMS <= 2.4.4 Improper Authentication Vulnerability
Forma LMS is prone to an improper authentication vulnerability. Copyright C 2022 Greenbone Networks GmbH SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free...
FormaLMS 2.4.4 - Authentication Bypass Exploit
Exploit Title: FormaLMS 2.4.4 - Authentication Bypass Google Dork: inurl:index.php?r=adm/ Exploit Author: Cristian 'void' Giustini @ Hacktive Security Vendor Homepage: https://formalms.org Software Link: https://formalms.org Version: = 2.4.4 Tested on: Linux CVE : CVE-2021-43136 Info: An...
FormaLMS 2.4.4 Authentication Bypass
Exploit Title: FormaLMS 2.4.4 - Authentication Bypass Google Dork: inurl:index.php?r=adm/ Date: 2021-11-10 Exploit Author: Cristian 'void' Giustini @ Hacktive Security Vendor Homepage: https://formalms.org Software Link: https://formalms.org Version: = 2.4.4 Tested on: Linux CVE : CVE-2021-43136...
CVE-2021-43136
CVE-2021-43136 affects FormaLMS <= 2.4.4. The issue is an authentication bypass that allows an attacker to bypass the authentication mechanism and gain valid access to the platform. Across connected documents, sources describe the same vulnerability class (authentication bypass) and reference ...