PT-2022-18165 · Sourcecodester · Sourcecodester Simple E-Learning System

Name of the Vulnerable Software and Affected Versions: SourceCodester Simple E-Learning System affected versions not specified Description: A critical issue affects some unknown functionality of the file /claire blake. The manipulation of the phoneNumber argument leads to SQL injection. The attac...

Simple E-Learning System 安全漏洞

Simple E-Learning System is a simple e-learning system by Carlo Montero's personal developer. simple E-Learning System is vulnerable to an arbitrary file download vulnerability, which stems from a lack of validation of external input data in the downloadFiles.php parameter download. validation. A...

Simple e-Learning System SQL注入漏洞

Simple e-Learning System is a simple e-learning system from Carlo Montero's personal developer. version v1.0 of Simple E-Learning System is vulnerable to a SQL injection vulnerability that stems from the affected file search.php lacking validation of externally entered SQL statements. An attacker...

Elearning System SQL注入漏洞

Elearning System is an e-learning system by Carlo Montero personal developer. It is used as an online platform to help a school provide a learning system. Elearning System suffers from a SQL injection vulnerability that originates from allowing arbitrary SQL commands to be executed via the...

CHMSC Elearning System 1.0 SQL Injection

Exploit Title: CHMSC Elearning System 1.0 - SQL Injection Exploit Author: Ferhat Çil Date: 2020-12-25 Vendor Homepage: https://www.sourcecodester.com/php/5172/responsive-e-learning-system.html Software Link:...

Command injection

The SUNNET WMPro v5.0 and v5.1 for eLearning system has OS Command Injection via "/teach/course/doajaxfileupload.php". The target server can be exploited without authentication...

CVE-2019-11062 SUNNET WMPro v5.0 and v5.1 has OS Command Injection

The SUNNET WMPro v5.0 and v5.1 for eLearning system has OS Command Injection via "/teach/course/doajaxfileupload.php". The target server can be exploited without authentication...

CVE-2019-11062

The CVE-2019-11062 entry affects SUNNET WMPro v5.0 and v5.1 for the eLearning system. Affected component: the API endpoint /teach/course/doajaxfileupload.php, where OS Command Injection is possible. Root cause described as unauthenticated remote command execution on the target server. Impact is h...

The vulnerability of the eLearning Server 4G system regarding access control allows a hacker to gain access and modify the user’s portfolio.

The vulnerability of the eLearning Server 4G system management and development framework is related to deficiencies in access control. Exploiting this vulnerability could allow a malicious actor to gain access—and modify—user portfolios by altering the value of the user identifier in HTTP request...

新为Elearning在线学习系统 /bos/desktop/ajax/EcAjax.aspx sql注入

No description provided by source...

eFront <= 3.5.1 / build 2710 Remote Arbitrary Upload Vulnerability

No description provided by source. -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- eFront = 3.5.1 / build 2710: Remote File Inclusion Vulnerability -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- $ Program: eFront $ File affected: studentpage.php / professorpag...

eFront 3.5.1 build 2710 - Arbitrary File Upload

eFront 3.5.1 build 2710 - Arbitrary File Upload -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- eFront eNYe-Sec - www.enye-sec.org -- Description by the author's page -- eFront is an easy to use, visually attractive, SCORM compatible, eLearning and Human Capital Development...