Lucene search
K

210 matches found

Vulnrichment
Vulnrichment
added 2022/07/20 11:35 a.m.5 views

CVE-2022-2489 SourceCodester Simple E-Learning System classRoom.php sql injection

A vulnerability was found in SourceCodester Simple E-Learning System 1.0. It has been rated as critical. This issue affects some unknown processing of the file classRoom.php. The manipulation of the argument classCode with the input 1'||SELECT 0x6770715a WHERE 8795=8795 AND SELECT 8342 FROMSELECT...

6.3CVSS7.6AI score0.00625EPSS
Exploits1References2
Cvelist
Cvelist
added 2022/07/20 11:35 a.m.21 views

CVE-2022-2489 SourceCodester Simple E-Learning System classRoom.php sql injection

A vulnerability was found in SourceCodester Simple E-Learning System 1.0. It has been rated as critical. This issue affects some unknown processing of the file classRoom.php. The manipulation of the argument classCode with the input 1'||SELECT 0x6770715a WHERE 8795=8795 AND SELECT 8342 FROMSELECT...

6.3CVSS9.1AI score0.00625EPSS
Exploits1References2
CNVD
CNVD
added 2022/07/18 12:0 a.m.14 views

Simple e-Learning System Cross-Site Scripting Vulnerability

Simple e-Learning System is a simple e-learning system from Carlo Montero's personal developer. version 1.0 of Simple e-Learning System is vulnerable to a cross-site scripting vulnerability that stems from the lack of a Bio parameter in the file /vcs/claireblake to filter the user-supplied data a...

5.4CVSS2.9AI score0.00521EPSS
Exploits1References1
NVD
NVD
added 2022/07/14 12:15 p.m.17 views

CVE-2022-2396

A vulnerability classified as problematic was found in SourceCodester Simple e-Learning System 1.0. Affected by this vulnerability is an unknown functionality of the file /vcs/claireblake. The manipulation of the argument Bio with the input "alertdocument.cookie leads to cross site scripting. The...

5.4CVSS0.00521EPSS
Exploits1References2
Prion
Prion
added 2022/07/14 12:15 p.m.12 views

Cross site scripting

A vulnerability classified as problematic was found in SourceCodester Simple e-Learning System 1.0. Affected by this vulnerability is an unknown functionality of the file /vcs/claireblake. The manipulation of the argument Bio with the input "alertdocument.cookie leads to cross site scripting. The...

4.9CVSS5.3AI score0.00521EPSS
Exploits1References2Affected Software1
CVE
CVE
added 2022/07/14 12:6 p.m.65 views

CVE-2022-2396

CVE-2022-2396 affects SourceCodester Simple e-Learning System 1.0. The vulnerability is an XSS in the /vcs/claire_blake endpoint, triggered by manipulating the Bio parameter with payload like >. Root cause is lack of input filtering on Bio, leading to client-side script execution. Attack can b...

5.4CVSS4.4AI score0.00521EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichment
added 2022/07/14 12:6 p.m.11 views

CVE-2022-2396 SourceCodester Simple e-Learning System claire_blake cross site scripting

A vulnerability classified as problematic was found in SourceCodester Simple e-Learning System 1.0. Affected by this vulnerability is an unknown functionality of the file /vcs/claireblake. The manipulation of the argument Bio with the input "alertdocument.cookie leads to cross site scripting. The...

3.5CVSS6.4AI score0.00521EPSS
Exploits1References2
CNVD
CNVD
added 2021/11/17 12:0 a.m.19 views

Moodle Input Validation Error Vulnerability (CNVD-2021-92540)

Moodle is a free, open source e-learning software platform, also known as a course management system, learning management system, or virtual learning environment. a security vulnerability exists in Moodle, which stems from a problem when the software restores backup files. an attacker could...

9.8CVSS2.5AI score0.02383EPSS
Exploits0References1
CNVD
CNVD
added 2021/03/09 12:0 a.m.9 views

Sourcecodester Pisay Online E-Learning System SQL Injection Vulnerability (CNVD-2021-95936)

Sourcecodester Pisay Online E-Learning System is an online e-learning system based on PHP and MySQL. Sourcecodester Pisay Online E-Learning System suffers from a SQL injection vulnerability that originates from a lack of validation of externally entered SQL statements in a database-based...

9.8CVSS8AI score0.17933EPSS
Exploits1References1
OSV
OSV
added 2021/02/15 9:15 p.m.5 views

CVE-2021-3239

E-Learning System 1.0 suffers from an unauthenticated SQL injection vulnerability, which allows remote attackers to execute arbitrary code on the hosting web server and gain a reverse shell...

9.8CVSS7.7AI score0.17933EPSS
Exploits1References5
NVD
NVD
added 2021/02/15 9:15 p.m.15 views

CVE-2021-3239

E-Learning System 1.0 suffers from an unauthenticated SQL injection vulnerability, which allows remote attackers to execute arbitrary code on the hosting web server and gain a reverse shell...

9.8CVSS0.17933EPSS
Exploits1References5
Prion
Prion
added 2021/02/15 9:15 p.m.19 views

Sql injection

E-Learning System 1.0 suffers from an unauthenticated SQL injection vulnerability, which allows remote attackers to execute arbitrary code on the hosting web server and gain a reverse shell...

7.5CVSS10AI score0.17933EPSS
Exploits1References5Affected Software1
Cvelist
Cvelist
added 2021/02/15 8:39 p.m.16 views

CVE-2021-3239

E-Learning System 1.0 suffers from an unauthenticated SQL injection vulnerability, which allows remote attackers to execute arbitrary code on the hosting web server and gain a reverse shell...

10AI score0.17933EPSS
Exploits1References5
CVE
CVE
added 2021/02/15 8:39 p.m.62 views

CVE-2021-3239

CVE-2021-3239 affects E-Learning System 1.0. The Red Hat, CNVD, CNVD CNVD, NVD and CVE records describe an unauthenticated SQL injection vulnerability that arises from lack of validation of externally entered SQL statements, allowing a remote attacker to execute arbitrary code on the hosting web ...

9.8CVSS10AI score0.17933EPSS
Exploits1References5Affected Software1
Positive Technologies
Positive Technologies
added 2021/02/15 12:0 a.m.13 views

PT-2021-19699

Name of the Vulnerable Software and Affected Versions: E-Learning System version 1.0 Description: The issue allows remote attackers to execute arbitrary code on the hosting web server and gain a reverse shell through an unauthenticated SQL injection. Recommendations: For E-Learning System version...

9.8CVSS6.2AI score0.17933EPSS
Exploits1References8
Packet Storm
Packet Storm
added 2021/01/15 12:0 a.m.207 views

E-Learning System 1.0 SQL Injection / Shell Upload

Exploit Title: E-Learning System 1.0 - Authentication Bypass & RCE Exploit Author: Himanshu Shukla & Saurav Shukla Date: 2021-01-15 Vendor Homepage: https://www.sourcecodester.com/php/12808/e-learning-system-using-phpmysqli.html Software Link:...

Exploits0
Exploit DB
Exploit DB
added 2021/01/15 12:0 a.m.221 views

E-Learning System 1.0 - Authentication Bypass

Exploit Title: E-Learning System 1.0 - Authentication Bypass & RCE Exploit Author: Himanshu Shukla & Saurav Shukla Date: 2021-01-15 Vendor Homepage: https://www.sourcecodester.com/php/12808/e-learning-system-using-phpmysqli.html Software Link:...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2021/01/06 12:0 a.m.184 views

Responsive E-Learning System 1.0 Cross Site Scripting

Exploit Title: Responsive E-Learning System 1.0 – Stored Cross Site Scripting Date: 2020-12-24 Exploit Author: Kshitiz Rajmanitorpotterk Vendor Homepage: https://www.sourcecodester.com/php/5172/responsive-e-learning-system.html Software Link:...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2021/01/06 12:0 a.m.208 views

Responsive E-Learning System 1.0 Shell Upload

Exploit Title: Responsive E-Learning System 1.0 - Unrestricted File Upload to RCE Date: 2020-12-24 Exploit Author: Kshitiz Raj manitorpotterk Vendor Homepage: https://www.sourcecodester.com/php/5172/responsive-e-learning-system.html Software Link:...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2021/01/06 12:0 a.m.227 views

Responsive E-Learning System 1.0 - Unrestricted File Upload to RCE

Exploit Title: Responsive E-Learning System 1.0 - Unrestricted File Upload to RCE Date: 2020-12-24 Exploit Author: Kshitiz Raj manitorpotterk Vendor Homepage: https://www.sourcecodester.com/php/5172/responsive-e-learning-system.html Software Link:...

7.4AI score
Exploits0
Rows per page
Query Builder