Lucene search
K

21 matches found

Positive Technologies
Positive Technologies
added 2026/03/16 12:0 a.m.8 views

PT-2026-25769

An authenticated arbitrary file upload vulnerability in the Courses/Work Assignments module of gunet Open eClass v3.11, and fixed in v3.13, allows attackers to execute arbitrary code via uploading a crafted SVG file...

5.4CVSS6.2AI score0.00242EPSS
Exploits1References5
CVE
CVE
added 2026/03/16 12:0 a.m.9 views

CVE-2025-65734

The CVE-2025-65734 entry concerns gunet Open eClass. An authenticated arbitrary file upload vulnerability exists in the Courses/Work Assignments module, allowing code execution via a crafted SVG file. Affected version v3.11; fixed in v3.13. The issue requires authentication and uses a crafted SVG...

5.4CVSS6.2AI score0.00242EPSS
Exploits1References4Affected Software1
RedhatCVE
RedhatCVE
added 2026/01/09 9:49 a.m.6 views

CVE-2020-24381

GUnet Open eClass Platform aka openeclass before 3.11 might allow remote attackers to read students' submitted assessments because it does not ensure that the web server blocks directory listings, and the data directory is inside the web root by default...

7.5CVSS7AI score0.01356EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2020-17113

Malware in sbrugna...

7.5CVSS7.5AI score0.01356EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-36169

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.0164EPSS
Exploits1References4
RedhatCVE
RedhatCVE
added 2025/05/22 10:56 p.m.9 views

CVE-2022-33116

An issue in the jmpath variable in /modules/mindmap/index.php of GUnet Open eClass Platform aka openeclass v3.12.4 and below allows attackers to read arbitrary files via a directory traversal...

6.5CVSS6.9AI score0.0164EPSS
Exploits1References1
NVD
NVD
added 2022/06/27 9:15 p.m.25 views

CVE-2022-33116

An issue in the jmpath variable in /modules/mindmap/index.php of GUnet Open eClass Platform aka openeclass v3.12.4 and below allows attackers to read arbitrary files via a directory traversal...

6.5CVSS0.0164EPSS
Exploits1References4
OSV
OSV
added 2022/06/27 9:15 p.m.19 views

CVE-2022-33116

An issue in the jmpath variable in /modules/mindmap/index.php of GUnet Open eClass Platform aka openeclass v3.12.4 and below allows attackers to read arbitrary files via a directory traversal...

6.5CVSS6.8AI score
Exploits0References4
Prion
Prion
added 2022/06/27 9:15 p.m.15 views

Directory traversal

An issue in the jmpath variable in /modules/mindmap/index.php of GUnet Open eClass Platform aka openeclass v3.12.4 and below allows attackers to read arbitrary files via a directory traversal...

3.5CVSS6.4AI score0.0164EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2022/06/27 8:42 p.m.25 views

CVE-2022-33116

An issue in the jmpath variable in /modules/mindmap/index.php of GUnet Open eClass Platform aka openeclass v3.12.4 and below allows attackers to read arbitrary files via a directory traversal...

6.6AI score0.0164EPSS
Exploits1References4
CNNVD
CNNVD
added 2022/06/27 12:0 a.m.3 views

GUnet Open eClass Platform 路径遍历漏洞

GUnet Open eClass Platform is an integrated course management system for GUnet eClass. A security vulnerability exists in GUnet Open eClass Platform aka openeclass version v3.12.4 and earlier. An attacker can exploit this vulnerability to read arbitrary files via directory traversal via the jmpat...

6.5CVSS6.7AI score0.0164EPSS
Exploits1References5
NVD
NVD
added 2022/06/11 3:15 p.m.27 views

CVE-2021-44266

GUnet Open eClass aka openeclass before 3.12.2 allows XSS via the modules/auth/formuser.php auth parameter...

6.1CVSS0.00978EPSS
Exploits1References3
OSV
OSV
added 2022/06/11 3:15 p.m.20 views

CVE-2021-44266

GUnet Open eClass aka openeclass before 3.12.2 allows XSS via the modules/auth/formuser.php auth parameter...

6.1CVSS5.8AI score0.00978EPSS
Exploits1References3
Cvelist
Cvelist
added 2022/06/11 2:50 p.m.26 views

CVE-2021-44266

GUnet Open eClass aka openeclass before 3.12.2 allows XSS via the modules/auth/formuser.php auth parameter...

6.2AI score0.00978EPSS
Exploits1References3
CVE
CVE
added 2022/06/11 2:50 p.m.58 views

CVE-2021-44266

CVE-2021-44266 affects GUnet Open eClass (openeclass) prior to version 3.12.2. The vulnerability is an XSS flaw exploitable via the modules/auth/formuser.php auth parameter. Root cause and remediation details are not provided in the supplied documents.

6.1CVSS5.9AI score0.00978EPSS
Exploits1References3Affected Software1
CNNVD
CNNVD
added 2022/06/11 12:0 a.m.5 views

GUnet Open eClass Platform 跨站脚本漏洞

GUnet Open eClass Platform is an integrated course management system for GUnet eClass. A security vulnerability exists in GUnet Open eClass Platform openeclass versions prior to 3.12.2, which can be exploited by attackers to conduct XSS attacks via the modules/auth/formuser.php auth parameter...

6.1CVSS6.2AI score0.00978EPSS
Exploits1References4
NVD
NVD
added 2020/08/19 12:15 p.m.27 views

CVE-2020-24381

GUnet Open eClass Platform aka openeclass before 3.11 might allow remote attackers to read students' submitted assessments because it does not ensure that the web server blocks directory listings, and the data directory is inside the web root by default...

7.5CVSS7.5AI score0.01356EPSS
Exploits1References2
OSV
OSV
added 2020/08/19 12:15 p.m.20 views

CVE-2020-24381

GUnet Open eClass Platform aka openeclass before 3.11 might allow remote attackers to read students' submitted assessments because it does not ensure that the web server blocks directory listings, and the data directory is inside the web root by default...

7.5CVSS7AI score0.01356EPSS
Exploits1References2
Prion
Prion
added 2020/08/19 12:15 p.m.13 views

Design/Logic Flaw

GUnet Open eClass Platform aka openeclass before 3.11 might allow remote attackers to read students' submitted assessments because it does not ensure that the web server blocks directory listings, and the data directory is inside the web root by default...

4.3CVSS7.5AI score0.01356EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2020/08/19 11:50 a.m.35 views

CVE-2020-24381

GUnet Open eClass Platform aka openeclass before 3.11 might allow remote attackers to read students' submitted assessments because it does not ensure that the web server blocks directory listings, and the data directory is inside the web root by default...

7.5AI score0.01356EPSS
Exploits1References2
Rows per page
Query Builder