EXERT Education Management System has a security vulnerability

EXERT Education Management System is a comprehensive education management software developed by the Turkish company EXERT. The version 23.09.2025 and earlier of the EXERT Education Management System contained security vulnerabilities. These vulnerabilities stemmed from unauthorized access through...

CVE-2025-1555

A vulnerability classified as critical was found in hzmanyun Education and Training System 3.1.1. This vulnerability affects the function saveImage. The manipulation of the argument file leads to unrestricted upload. The attack can be initiated remotely. The exploit has been disclosed to the publ...

EUVD-2007-1440

Malware in sbrugna...

EUVD-2010-2148

Malware in sbrugna...

EUVD-2025-7447

Malicious code in bioql PyPI...

CVE-2025-8785 Portabilis i-Educar educar_usuario_lst.php cross site scripting

A vulnerability, which was classified as problematic, has been found in Portabilis i-Educar up to 2.9. This issue affects some unknown processing of the file /intranet/educarusuariolst.php. The manipulation of the argument nmpessoa/matricula/matriculainterna leads to cross site scripting. The...

CVE-2025-1947

A vulnerability classified as critical has been found in hzmanyun Education and Training System 2.1.3. This affects the function scorm of the file UploadImageController.java. The manipulation of the argument param leads to command injection. It is possible to initiate the attack remotely. The...

CVE-2025-1946

A vulnerability was found in hzmanyun Education and Training System 2.1. It has been rated as critical. Affected by this issue is the function exportPDF of the file /user/exportPDF. The manipulation of the argument id leads to command injection. The attack may be launched remotely. The exploit ha...

CVE-2025-1947

Affects: hzmanyun Education and Training System 2.1.3. Vulnerability: command injection in the scorm function of UploadImageController.java caused by improper handling of the param argument. Impact: remote exploitation with full impact on confidentiality, integrity, and availability as indicated ...

hzmanyun Education and Training System 注入漏洞

hzmanyun Education and Training System is an education and training system from China Man Yun hzmanyun Company. An injection vulnerability exists in version 2.1 of the hzmanyun Education and Training System, which stems from command injection...

hzmanyun Education and Training System 注入漏洞

hzmanyun Education and Training System is an education and training system from China Man Yun hzmanyun Company. An injection vulnerability exists in hzmanyun Education and Training System version 2.1.3, which stems from a command injection issue...

PT-2025-9695

Name of the Vulnerable Software and Affected Versions hzmanyun Education and Training System version 2.1.3 Description A critical vulnerability has been found in the hzmanyun Education and Training System. This affects the scorm function of the UploadImageController.java file. The manipulation of...

PT-2025-7822

Name of the Vulnerable Software and Affected Versions hzmanyun Education and Training System version 3.1.1 Description A critical vulnerability was found in the hzmanyun Education and Training System. The issue affects the pdf2swf function of the file /pdf2swf. The manipulation of the file argume...

CVE-2025-1555

A vulnerability classified as critical was found in hzmanyun Education and Training System 3.1.1. This vulnerability affects the function saveImage. The manipulation of the argument file leads to unrestricted upload. The attack can be initiated remotely. The exploit has been disclosed to the publ...

CVE-2025-1555 hzmanyun Education and Training System saveImage unrestricted upload

A vulnerability classified as critical was found in hzmanyun Education and Training System 3.1.1. This vulnerability affects the function saveImage. The manipulation of the argument file leads to unrestricted upload. The attack can be initiated remotely. The exploit has been disclosed to the publ...

PT-2025-7529

Name of the Vulnerable Software and Affected Versions hzmanyun Education and Training System version 3.1.1 Description A critical vulnerability was found in the hzmanyun Education and Training System, affecting the saveImage function. The manipulation of the file argument leads to unrestricted...

SQL Injection Vulnerability in WEB Version of Online Education System of Shandong Wanyue Information Technology Co.

WEB version of Wanyue online education system is an online education system developed by Shandong Wanyue Information Technology Co. WEB version of Shandong Wanyue Online Education System has a SQL injection vulnerability, which can be exploited by attackers to obtain sensitive information from th...

XSS Vulnerability in Incu Online Education System (CNVD-2021-05100)

Incu online education system is the Java version of the open source online school source code building system . Incu Online Education System XSS vulnerability. Attackers can use the vulnerability to obtain administrator cookies...

Unauthorized Access Vulnerability in Incu Online Education System

Incu online education system is the Java version of the open source online school source code building system . There is an unauthorized access vulnerability in Incu Online Education System. An attacker can exploit the vulnerability to obtain sensitive information...

XSS Vulnerability in Incu Online Education System

Incu online education system is the Java version of the open source online school source code building system . Incu Online Education System XSS vulnerability. Attackers can use the vulnerability to obtain administrator cookies...