Lucene search
K

7 matches found

NVD
NVD
added 2022/06/27 9:15 p.m.26 views

CVE-2022-33116

An issue in the jmpath variable in /modules/mindmap/index.php of GUnet Open eClass Platform aka openeclass v3.12.4 and below allows attackers to read arbitrary files via a directory traversal...

6.5CVSS0.0164EPSS
Exploits1References4
Prion
Prion
added 2022/06/27 9:15 p.m.16 views

Directory traversal

An issue in the jmpath variable in /modules/mindmap/index.php of GUnet Open eClass Platform aka openeclass v3.12.4 and below allows attackers to read arbitrary files via a directory traversal...

3.5CVSS6.4AI score0.0164EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2022/06/27 8:42 p.m.26 views

CVE-2022-33116

An issue in the jmpath variable in /modules/mindmap/index.php of GUnet Open eClass Platform aka openeclass v3.12.4 and below allows attackers to read arbitrary files via a directory traversal...

6.6AI score0.0164EPSS
Exploits1References4
OSV
OSV
added 2022/06/27 8:42 p.m.19 views

CVE-2022-33116

An issue in the jmpath variable in /modules/mindmap/index.php of GUnet Open eClass Platform aka openeclass v3.12.4 and below allows attackers to read arbitrary files via a directory traversal...

6.5CVSS6.8AI score0.0164EPSS
Exploits1References6
NVD
NVD
added 2020/08/19 12:15 p.m.28 views

CVE-2020-24381

GUnet Open eClass Platform aka openeclass before 3.11 might allow remote attackers to read students' submitted assessments because it does not ensure that the web server blocks directory listings, and the data directory is inside the web root by default...

7.5CVSS7.5AI score0.01356EPSS
Exploits1References2
CVE
CVE
added 2020/08/19 11:50 a.m.47 views

CVE-2020-24381

GUnet Open eClass Platform (openeclass) prior to 3.11 is vulnerable to reading submitted assessments due to directory listing not being blocked and the data directory being inside the web root. This could allow remote attackers to access student submissions. The affected product/version is public...

7.5CVSS7.4AI score0.01356EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2020/08/19 11:50 a.m.36 views

CVE-2020-24381

GUnet Open eClass Platform aka openeclass before 3.11 might allow remote attackers to read students' submitted assessments because it does not ensure that the web server blocks directory listings, and the data directory is inside the web root by default...

7.5AI score0.01356EPSS
Exploits1References2
Rows per page
Query Builder