3 matches found
Academy LMS 6.2 - Reflected XSS
Exploit Title: Academy LMS 6.2 - Reflected XSS Exploit Author: CraCkEr Date: 29/08/2023 Vendor: Creativeitem Vendor Homepage: https://creativeitem.com/ Software Link: https://demo.creativeitem.com/academy/ Tested on: Windows 10 Pro Impact: Manipulate the content of the site CVE: CVE-2023-4973 CWE...
CVE-2023-4973
Academy LMS 6.2 (Windows) contains a Cross-Site Scripting vulnerability in the /academy/tutor/filter functionality (GET Parameter Handler). User-controlled inputs—searched_word, searched_tution_class_type[], searched_price_type[], and searched_duration[]—can be reflected back and trigger XSS. The...
Academy LMS 6.2 Cross Site Scripting
Exploit Title: Academy LMS 6.2 - Reflected XSS Exploit Author: CraCkEr Date: 29/08/2023 Vendor: Creativeitem Vendor Homepage: https://creativeitem.com/ Software Link: https://demo.creativeitem.com/academy/ Tested on: Windows 10 Pro Impact: Manipulate the content of the site CVE: CVE-2023-4973 CWE...