Lucene search
K

210 matches found

Vulnrichment
Vulnrichment
added 2025/02/23 6:31 p.m.16 views

CVE-2025-1590 SourceCodester E-Learning System List of Lessons Page index.php unrestricted upload

A vulnerability was found in SourceCodester E-Learning System 1.0. It has been classified as critical. Affected is an unknown function of the file /admin/modules/lesson/index.php of the component List of Lessons Page. The manipulation leads to unrestricted upload. It is possible to launch the...

5.8CVSS6.9AI score0.00367EPSS
Exploits0References4
OSV
OSV
added 2025/02/23 6:15 p.m.3 views

CVE-2025-1589

A vulnerability was found in SourceCodester E-Learning System 1.0 and classified as problematic. This issue affects some unknown processing of the file /register.php of the component User Registration Handler. The manipulation leads to cross site scripting. The attack may be initiated remotely...

6.1CVSS3.9AI score0.00446EPSS
Exploits0References4
NVD
NVD
added 2025/02/23 6:15 p.m.41 views

CVE-2025-1589

A vulnerability was found in SourceCodester E-Learning System 1.0 and classified as problematic. This issue affects some unknown processing of the file /register.php of the component User Registration Handler. The manipulation leads to cross site scripting. The attack may be initiated remotely...

6.1CVSS0.00446EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2025/02/23 6:0 p.m.8 views

CVE-2025-1589 SourceCodester E-Learning System User Registration register.php cross site scripting

A vulnerability was found in SourceCodester E-Learning System 1.0 and classified as problematic. This issue affects some unknown processing of the file /register.php of the component User Registration Handler. The manipulation leads to cross site scripting. The attack may be initiated remotely...

5.3CVSS6.3AI score0.00446EPSS
Exploits0References4
Cvelist
Cvelist
added 2025/02/23 6:0 p.m.34 views

CVE-2025-1589 SourceCodester E-Learning System User Registration register.php cross site scripting

A vulnerability was found in SourceCodester E-Learning System 1.0 and classified as problematic. This issue affects some unknown processing of the file /register.php of the component User Registration Handler. The manipulation leads to cross site scripting. The attack may be initiated remotely...

5.3CVSS0.00446EPSS
Exploits0References4
CVE
CVE
added 2025/02/23 6:0 p.m.61 views

CVE-2025-1589

CVE-2025-1589 affects SourceCodester E-Learning System 1.0, specifically the User Registration Handler’s /register.php. Multiple connected sources describe a cross-site scripting vulnerability that can be triggered remotely through the registration path. The exact affected code path is the handli...

6.1CVSS4.4AI score0.00446EPSS
Exploits0References4Affected Software1
CNNVD
CNNVD
added 2025/02/23 12:0 a.m.6 views

SourceCodester E-Learning System 代码问题漏洞

SourceCodester E-Learning System is a SourceCodester open source e-learning system. A code issue vulnerability exists in SourceCodester E-Learning System version 1.0, which stems from allowing unlimited file uploads...

7.2CVSS5.2AI score0.00367EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2025/02/08 4:38 a.m.8 views

CVE-2020-36084

SQL Injection vulnerability in SourceCodester Responsive E-Learning System 1.0 allows remote attackers to inject sql query in /elearning/deleteteacherstudents.php?id= parameter via id field...

9.8CVSS8.1AI score0.00692EPSS
Exploits1
NVD
NVD
added 2025/02/05 10:15 p.m.10 views

CVE-2020-36084

SQL Injection vulnerability in SourceCodester Responsive E-Learning System 1.0 allows remote attackers to inject sql query in /elearning/deleteteacherstudents.php?id= parameter via id field...

9.8CVSS0.00692EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2025/02/05 12:0 a.m.8 views

CVE-2020-36084

SQL Injection vulnerability in SourceCodester Responsive E-Learning System 1.0 allows remote attackers to inject sql query in /elearning/deleteteacherstudents.php?id= parameter via id field...

9.8AI score0.00692EPSS
Exploits1References1
Cvelist
Cvelist
added 2025/02/05 12:0 a.m.17 views

CVE-2020-36084

SQL Injection vulnerability in SourceCodester Responsive E-Learning System 1.0 allows remote attackers to inject sql query in /elearning/deleteteacherstudents.php?id= parameter via id field...

0.00692EPSS
Exploits1References1
CVE
CVE
added 2025/02/05 12:0 a.m.57 views

CVE-2020-36084

CVE-2020-36084 describes a SQL Injection vulnerability in SourceCodester Responsive E-Learning System 1.0, where an attacker can inject SQL via the id parameter in /elearning/delete_teacher_students.php?id=. The CVSS metrics indicate a critical risk (CVSS v3.1: 9.8, Network attack vector, no priv...

9.8CVSS8.2AI score0.00692EPSS
Exploits1References1Affected Software1
CNNVD
CNNVD
added 2025/02/05 12:0 a.m.6 views

SourceCodester Responsive E-Learning System 安全漏洞

SourceCodester Responsive E-Learning System is an open source e-learning system from Sourcecodester. A security vulnerability exists in SourceCodester Responsive E-Learning System version 1.0. An attacker can exploit this vulnerability to inject a sql query via the id field in the...

9.8CVSS6.9AI score0.00692EPSS
Exploits1References1
NVD
NVD
added 2024/12/09 7:15 p.m.25 views

CVE-2024-54934

Kashipara E-learning Management System v1.0 is vulnerable to SQL Injection in /admin/deleteclass.php...

9.8CVSS0.00496EPSS
Exploits1References1
NVD
NVD
added 2024/12/09 7:15 p.m.28 views

CVE-2024-54925

A SQL Injection was found in /removesentmessage.php in kashipara E-learning Management System v1.0, which allows remote attackers to execute arbitrary SQL commands to get unauthorized database access via the id parameter...

9.8CVSS0.00583EPSS
Exploits1References1
OSV
OSV
added 2024/12/09 6:15 p.m.4 views

CVE-2024-54935

A Stored Cross-Site Scripting XSS vulnerability was found in /sendmessageteachertostudent.php of kashipara E-learning Management System v1.0. This vulnerability allows remote attackers to execute arbitrary scripts via the mymessage parameter...

5.4CVSS6AI score0.0038EPSS
Exploits1References1
CNNVD
CNNVD
added 2024/12/09 12:0 a.m.5 views

Kashipara E-learning Management System 安全漏洞

Kashipara E-learning Management System is a learning management system from Kashipara. A security vulnerability exists in Kashipara E-learning Management System v1.0. An attacker can exploit the vulnerability to access the database by executing arbitrary SQL commands via the firstname, lastname,...

9.8CVSS7.5AI score0.00562EPSS
Exploits1References1
Cvelist
Cvelist
added 2024/12/09 12:0 a.m.21 views

CVE-2024-54932

Kashipara E-learning Management System v1.0 is vulnerable to SQL Injection in /admin/deletedepartment.php...

0.00496EPSS
Exploits1References1
CNNVD
CNNVD
added 2024/12/09 12:0 a.m.4 views

Kashipara E-learning Management System 安全漏洞

Kashipara E-learning Management System is a learning management system from Kashipara. A security vulnerability exists in Kashipara E-learning Management System v1.0. An attacker can exploit the vulnerability to access sensitive files and directories via /admin/assets...

5.3CVSS6.7AI score0.00461EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2024/12/09 12:0 a.m.11 views

CVE-2024-54930

Kashipara E-learning Management System v1.0 is vulnerable to SQL Injection in /admin/deletestudent.php...

8AI score0.00479EPSS
Exploits1References1
Rows per page
Query Builder