Lucene search
+L

99 matches found

Vulnrichment
Vulnrichment
added 2026/04/02 6:29 p.m.3 views

CVE-2026-34736 Open edX Platform: Account Activation Bypass via activation_key Exposure in REST API

Open edX Platform enables the authoring and delivery of online learning at any scale. From the maple release to before the ulmo release, an unauthenticated attacker can fully bypass the email verification process by combining two issues: the OAuth2 password grant issuing tokens to inactive users...

5.3CVSS5.8AI score0.00211EPSS
Exploits0References2
EUVD
EUVD
added 2026/04/02 6:29 p.m.3 views

EUVD-2026-18502

Open edX Platform enables the authoring and delivery of online learning at any scale. From the maple release to before the ulmo release, an unauthenticated attacker can fully bypass the email verification process by combining two issues: the OAuth2 password grant issuing tokens to inactive users...

5.3CVSS5.8AI score0.00211EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/04/02 6:29 p.m.25 views

CVE-2026-34736 Open edX Platform: Account Activation Bypass via activation_key Exposure in REST API

Open edX Platform enables the authoring and delivery of online learning at any scale. From the maple release to before the ulmo release, an unauthenticated attacker can fully bypass the email verification process by combining two issues: the OAuth2 password grant issuing tokens to inactive users...

5.3CVSS0.00211EPSS
Exploits0References2
CVE
CVE
added 2026/04/02 6:29 p.m.18 views

CVE-2026-34736

Open edX Platform experiened an account-activation bypass vulnerability (CVE-2026-34736). In affected versions from maple up to just before ulmo, an unauthenticated attacker could bypass email verification by chaining two issues: the OAuth2 password grant issuing tokens to inactive users, and the...

5.3CVSS5.8AI score0.00211EPSS
Exploits0References2
OSV
OSV
added 2026/04/02 6:29 p.m.2 views

CVE-2026-34736 Open edX Platform: Account Activation Bypass via activation_key Exposure in REST API

Open edX Platform enables the authoring and delivery of online learning at any scale. From the maple release to before the ulmo release, an unauthenticated attacker can fully bypass the email verification process by combining two issues: the OAuth2 password grant issuing tokens to inactive users...

5.3CVSS5.9AI score0.00211EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/04/02 12:0 a.m.11 views

Open edX Platform 授权问题漏洞

The Open edX Platform is an open-source course management system developed by Open edX. This system can be used for MOOCs Massive Open Online Courses as well as smaller courses and training modules. The Open edX Platform, from Maple versions up to ulmo, had authorization-related vulnerabilities...

5.3CVSS5.7AI score0.00211EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/01/09 11:13 a.m.7 views

CVE-2016-10766

edx-platform before 2016-06-06 allows CSRF...

8.8CVSS7AI score0.00604EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 11:10 a.m.11 views

CVE-2016-10765

edx-platform before 2016-06-10 allows account activation with a spoofed e-mail address...

5.3CVSS6.9AI score0.0076EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 10:33 a.m.8 views

CVE-2017-18380

edx-platform before 2017-08-03 allows attackers to trigger password-reset e-mail messages in which the reset link has an attacker-controlled domain name...

7.5CVSS6.9AI score0.01079EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/12/17 7:0 p.m.13 views

CVE-2025-68270

The Open edX Platform is a learning management platform. Prior to commit 05d0d0936daf82c476617257aa6c35f0cd4ca060, CourseLimitedStaffRole users are able to access and edit courses in studio if they are granted the role on an org rather than on a course, and CourseLimitedStaffRole users are able t...

9.9CVSS6.8AI score0.0028EPSS
Exploits0References1
NVD
NVD
added 2025/12/16 7:16 p.m.5 views

CVE-2025-68270

The Open edX Platform is a learning management platform. Prior to commit 05d0d0936daf82c476617257aa6c35f0cd4ca060, CourseLimitedStaffRole users are able to access and edit courses in studio if they are granted the role on an org rather than on a course, and CourseLimitedStaffRole users are able t...

9.9CVSS0.0028EPSS
Exploits0References4
EUVD
EUVD
added 2025/12/16 6:26 p.m.6 views

EUVD-2025-203830

The Open edX Platform is a learning management platform. Prior to commit 05d0d0936daf82c476617257aa6c35f0cd4ca060, CourseLimitedStaffRole users are able to access and edit courses in studio if they are granted the role on an org rather than on a course, and CourseLimitedStaffRole users are able t...

9.9CVSS6.3AI score0.0028EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/12/16 12:0 a.m.9 views

PT-2025-51780

The Open edX Platform is a learning management platform. Prior to commit 05d0d0936daf82c476617257aa6c35f0cd4ca060, CourseLimitedStaffRole users are able to access and edit courses in studio if they are granted the role on an org rather than on a course, and CourseLimitedStaffRole users are able t...

9.9CVSS6.8AI score0.0028EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2018-13397

Malware in sbrugna...

6.1CVSS6.3AI score0.01202EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2016-1760

Malware in sbrugna...

8.8CVSS8.6AI score0.00604EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2015-5555

Malware in sbrugna...

8.8CVSS8.8AI score0.0149EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2015-6892

Malware in sbrugna...

6.1CVSS6.3AI score0.00641EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2015-6195

Malware in sbrugna...

5.4CVSS5.5AI score0.0053EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-39195

Malicious code in bioql PyPI...

5.3CVSS6.6AI score0.00331EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2025-28136

Malicious code in bioql PyPI...

5.3CVSS6.5AI score0.00373EPSS
Exploits0References3
Rows per page
Query Builder