Lucene search
K

757 matches found

CNVD
CNVD
added 2022/05/27 12:0 a.m.27 views

Moodle Information Disclosure Vulnerability (CNVD-2022-54951)

Moodle is a free, open source e-learning software platform, also known as a course management system, learning management system or virtual learning environment. moodle suffers from an information disclosure vulnerability that can be exploited by attackers to gain unauthorized access to sensitive...

4.3CVSS3.3AI score0.00708EPSS
Exploits0References1
CNVD
CNVD
added 2022/05/19 12:0 a.m.29 views

Unspecified vulnerability exists in moodle (CNVD-2022-54952)

Moodle is a free, open source e-learning software platform, also known as a course management system, learning management system or virtual learning environment. a security vulnerability exists in Moodle, which stems from the description user field failing to hide when set to hidden. No details o...

5.3CVSS1.8AI score0.01213EPSS
Exploits0References1
CNVD
CNVD
added 2022/04/19 12:0 a.m.21 views

Moodle Access Control Error Vulnerability (CNVD-2022-54953)

Moodle is a free, open source e-learning software platform, also known as a course management system, learning management system, or virtual learning environment. an access control error vulnerability exists in Moodle, which stems from the calendar:manageentries feature allowing managers to acces...

5.5CVSS3.9AI score0.00572EPSS
Exploits0References1
CNVD
CNVD
added 2022/03/23 12:0 a.m.20 views

Moodle Access Control Error Vulnerability (CNVD-2022-54955)

Moodle is a free, open source e-learning software platform, also known as a course management system, learning management system, or virtual learning environment. an access control error vulnerability exists in Moodle, which stems from improper access restrictions. A remote attacker could use the...

4.3CVSS3.8AI score0.0052EPSS
Exploits0References1
CNVD
CNVD
added 2022/03/23 12:0 a.m.21 views

Moodle Licensing Issue Vulnerability (CNVD-2022-54954)

Moodle is a free, open source e-learning software platform, also known as a course management system, learning management system, or virtual learning environment. a security vulnerability exists in Moodle, which stems from an application that does not properly impose security restrictions. A remo...

4.3CVSS4.1AI score0.0052EPSS
Exploits0References1
NVD
NVD
added 2022/02/07 4:15 p.m.9 views

CVE-2021-25029

The CLUEVO LMS, E-Learning Platform WordPress plugin before 1.8.1 does not sanitise and escape Course's module, which could allow high privilege users to perform Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed...

4.8CVSS0.00598EPSS
Exploits2References1
Prion
Prion
added 2022/02/07 4:15 p.m.15 views

Cross site scripting

The CLUEVO LMS, E-Learning Platform WordPress plugin before 1.8.1 does not sanitise and escape Course's module, which could allow high privilege users to perform Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed...

3.5CVSS4.7AI score0.00598EPSS
Exploits2References1Affected Software1
CVE
CVE
added 2022/02/07 3:47 p.m.46 views

CVE-2021-25029

CVE-2021-25029 affects the WordPress CLUEVO LMS plugin prior to version 1.8.1. The vulnerability arises because the plugin does not sanitize and escape data in the Course module, enabling stored Cross‑Site Scripting (XSS) by high-privilege users even when unfiltered_html is disallowed. Impact is ...

4.8CVSS4.7AI score0.00598EPSS
Exploits2References1Affected Software1
Cvelist
Cvelist
added 2022/02/07 3:47 p.m.18 views

CVE-2021-25029 Cluevo < 1.8.1 - Admin+ Stored Cross Site Scripting

The CLUEVO LMS, E-Learning Platform WordPress plugin before 1.8.1 does not sanitise and escape Course's module, which could allow high privilege users to perform Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed...

5AI score0.00598EPSS
Exploits2References1
CNNVD
CNNVD
added 2022/02/07 12:0 a.m.5 views

Wordpress Plugin CLUEVO LMS, E-Learning Platform 跨站脚本漏洞

WordPress is the Wordpress Foundation's set of blogging platform developed using the PHP language . The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an open source application plugin for WordPress. A cross-site scripting vulnerability exists i...

4.8CVSS5.2AI score0.00598EPSS
Exploits2References2
CNVD
CNVD
added 2022/01/26 12:0 a.m.23 views

Moodle Access Control Error Vulnerability (CNVD-2022-09259)

Moodle is a free, open-source e-learning software platform, also known as a course management system, learning management system or virtual learning environment. Moodle suffers from an Access Control Error vulnerability that arises from a networked system or product that does not properly restric...

4.3CVSS4.7AI score0.00732EPSS
Exploits0References1
Patchstack
Patchstack
added 2022/01/10 12:0 a.m.17 views

WordPress CLUEVO LMS, E-Learning Platform plugin <= 1.8.0 - Stored Cross-Site Scripting (XSS) vulnerability

Stored Cross-Site Scripting XSS vulnerability discovered by Rutuja D Shirke in WordPress CLUEVO LMS, E-Learning Platform plugin versions = 1.8.0. Solution Update the WordPress CLUEVO LMS, E-Learning Platform plugin to the latest available version at least 1.8.1...

4.8CVSS2.2AI score0.00598EPSS
Exploits2References3Affected Software1
CNVD
CNVD
added 2021/12/14 12:0 a.m.15 views

OpenOlat has unspecified vulnerabilities

OpenOLAT is a web-based e-learning platform for teaching, learning, assessing and communicating with an LMS, a learning management system. a security vulnerability exists in versions of OpenOlat prior to 15.5.12 and 16.0.5, which stems from the fact that by providing a file name containing a...

8.1CVSS1.7AI score0.01441EPSS
Exploits0References1
Openbugbounty
Openbugbounty
added 2021/12/12 12:1 a.m.12 views

e-learning.polban.ac.id Cross Site Scripting vulnerability OBB-2300116

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
Openbugbounty
Openbugbounty
added 2021/11/30 12:6 a.m.11 views

e-learning-chodel.eurzad.eu Cross Site Scripting vulnerability OBB-2288268

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
CNVD
CNVD
added 2021/11/17 12:0 a.m.34 views

Moodle permission permission and access control issue vulnerability (CNVD-2021-93378)

Moodle is a free, open source e-learning software platform, also known as a course management system, learning management system, or virtual learning environment. moodle has a permission permission and access control issue vulnerability that stems from insufficient detection of functionality in t...

5.3CVSS4.2AI score0.00973EPSS
Exploits0References1
CNVD
CNVD
added 2021/11/17 12:0 a.m.19 views

Moodle Input Validation Error Vulnerability (CNVD-2021-92540)

Moodle is a free, open source e-learning software platform, also known as a course management system, learning management system, or virtual learning environment. a security vulnerability exists in Moodle, which stems from a problem when the software restores backup files. an attacker could...

9.8CVSS2.5AI score0.02383EPSS
Exploits0References1
CNVD
CNVD
added 2021/11/17 12:0 a.m.32 views

Moodle Cross-Site Request Forgery Vulnerability (CNVD-2021-92541)

Moodle is a free and open source e-learning software platform, also known as a course management system, learning management system or virtual learning environment. This could lead to cross-site request forgery attacks. No details of the vulnerability are currently available...

8.8CVSS4.6AI score0.00607EPSS
Exploits0References1
Openbugbounty
Openbugbounty
added 2021/10/27 12:16 a.m.12 views

elearning.marcoaurelio.comune.roma.it Cross Site Scripting vulnerability OBB-2210825

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

Exploits0
Openbugbounty
Openbugbounty
added 2021/10/27 12:12 a.m.11 views

e-learning.outsphera.it Cross Site Scripting vulnerability OBB-2210815

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

Exploits0
Rows per page
Query Builder