12 matches found
EUVD-2008-7106
Malware in sbrugna...
EUVD-2008-7105
Malware in sbrugna...
CVE-2008-7146
IntraLearn Software IntraLearn 2.1, and possibly other versions before 4.2.3, allows remote attackers to obtain sensitive information via a direct request to 1 KnowledgeImpactCourse.htm, 2 LRN-formattedCourse.htm, or 3 CreateCourse.htm in help/1/Instructor/, which reveals the installation path in...
CVE-2008-7147
Multiple cross-site scripting XSS vulnerabilities in IntraLearn Software IntraLearn 2.1, and possibly other versions before 4.2.3, allow remote attackers to inject arbitrary web script or HTML via the 1 outline and 2 course parameters to library/descriptionlink.cfm, or the 3 recordstodisplay and ...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in IntraLearn Software IntraLearn 2.1, and possibly other versions before 4.2.3, allow remote attackers to inject arbitrary web script or HTML via the 1 outline and 2 course parameters to library/descriptionlink.cfm, or the 3 recordstodisplay and ...
CVE-2008-7147
Multiple cross-site scripting XSS vulnerabilities in IntraLearn Software IntraLearn 2.1, and possibly other versions before 4.2.3, allow remote attackers to inject arbitrary web script or HTML via the 1 outline and 2 course parameters to library/descriptionlink.cfm, or the 3 recordstodisplay and ...
CVE-2008-7146
IntraLearn Software IntraLearn 2.1, and possibly other versions before 4.2.3, allows remote attackers to obtain sensitive information via a direct request to 1 KnowledgeImpactCourse.htm, 2 LRN-formattedCourse.htm, or 3 CreateCourse.htm in help/1/Instructor/, which reveals the installation path in...
Information disclosure
IntraLearn Software IntraLearn 2.1, and possibly other versions before 4.2.3, allows remote attackers to obtain sensitive information via a direct request to 1 KnowledgeImpactCourse.htm, 2 LRN-formattedCourse.htm, or 3 CreateCourse.htm in help/1/Instructor/, which reveals the installation path in...
CVE-2008-7146
IntraLearn Software IntraLearn 2.1, and possibly other versions before 4.2.3, allows remote attackers to obtain sensitive information via a direct request to 1 KnowledgeImpactCourse.htm, 2 LRN-formattedCourse.htm, or 3 CreateCourse.htm in help/1/Instructor/, which reveals the installation path in...
CVE-2008-7146
CVE-2008-7146 affects IntraLearn Software IntraLearn 2.1 and possibly earlier versions before 4.2.3. The vulnerability allows a remote attacker to obtain sensitive information by requesting one of three help pages (Knowledge_Impact_Course.htm, LRN-formatted_Course.htm, or Create_Course.htm in hel...
CVE-2008-7147
CVE-2008-7147 describes multiple cross-site scripting (XSS) vulnerabilities in IntraLearn Software IntraLearn 2.1, and possibly versions before 4.2.3. The issues allow remote attackers to inject arbitrary web script or HTML via (1) outline and (2) course parameters to library/description_link.cfm...
CVE-2008-7147
Multiple cross-site scripting XSS vulnerabilities in IntraLearn Software IntraLearn 2.1, and possibly other versions before 4.2.3, allow remote attackers to inject arbitrary web script or HTML via the 1 outline and 2 course parameters to library/descriptionlink.cfm, or the 3 recordstodisplay and ...