Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

20 matches found

EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2018-4070

Malware in sbrugna...

6.1CVSS6.3AI score0.0068EPSS
Exploits3References4
EUVD
EUVDadded 2025/10/07 12:30 a.m.1 views

EUVD-2009-4266

Malware in sbrugna...

5CVSS6.1AI score0.00746EPSS
Exploits0References12
SUSE CVE
SUSE CVEadded 2023/02/15 6:1 a.m.2 views

SUSE CVE-2009-4298

The LAMS module mod/lams for Moodle 1.8 before 1.8.11 and 1.9 before 1.9.7 stores the 1 username, 2 firstname, and 3 lastname fields within the user table, which allows attackers to obtain user account information via unknown vectors...

5CVSS6.7AI score0.00746EPSS
Exploits0References4
Packet Storm
Packet Stormadded 2018/08/06 12:0 a.m.31 views

LAMS Cross Site Scripting

Exploit Title: LAMS 3.1 - Cross-Site Scripting Date: 2018-08-05 Exploit Author: Nikola Kojic Website: https://ras-it.rs/ Vendor Homepage: https://www.lamsfoundation.org/ Software Link: https://www.lamsfoundation.org/downloadshome.htm Category: Web Application Platform: Java Version: = 3.1 CVE:...

4.3CVSS6.4AI score0.0068EPSS
Exploits3
Exploit DB
Exploit DBadded 2018/08/06 12:0 a.m.40 views

LAMS < 3.1 - Cross-Site Scripting

Exploit Title: LAMS 3.1 - Cross-Site Scripting Date: 2018-08-05 Exploit Author: Nikola Kojic Website: https://ras-it.rs/ Vendor Homepage: https://www.lamsfoundation.org/ Software Link: https://www.lamsfoundation.org/downloadshome.htm Category: Web Application Platform: Java Version: = 3.1 CVE:...

7.4AI score
Exploits0
exploitpack
exploitpackadded 2018/08/06 12:0 a.m.17 views

LAMS 3.1 - Cross-Site Scripting

LAMS 3.1 - Cross-Site Scripting Exploit Title: LAMS 3.1 - Cross-Site Scripting Date: 2018-08-05 Exploit Author: Nikola Kojic Website: https://ras-it.rs/ Vendor Homepage: https://www.lamsfoundation.org/ Software Link: https://www.lamsfoundation.org/downloadshome.htm Category: Web Application...

6.8AI score
Exploits0
0day.today
0day.todayadded 2018/08/06 12:0 a.m.57 views

LAMS < 3.1 - Cross-Site Scripting Vulnerability

Exploit for java platform in category web applications Exploit Title: LAMS 3.1 - Cross-Site Scripting Exploit Author: Nikola Kojic Website: https://ras-it.rs/ Vendor Homepage: https://www.lamsfoundation.org/ Software Link: https://www.lamsfoundation.org/downloadshome.htm Category: Web Application...

4.3CVSS6.4AI score0.0068EPSS
Exploits3
Prion
Prionadded 2018/06/11 10:29 a.m.9 views

Cross site scripting

There is unauthenticated reflected cross-site scripting XSS in LAMS before 3.1 that allows a remote attacker to introduce arbitrary JavaScript via manipulation of an unsanitized GET parameter during a forgotPasswordChange.jsp?key= password change...

4.3CVSS6.2AI score0.0068EPSS
Exploits3References2Affected Software1
NVD
NVDadded 2018/06/11 10:29 a.m.9 views

CVE-2018-12090

There is unauthenticated reflected cross-site scripting XSS in LAMS before 3.1 that allows a remote attacker to introduce arbitrary JavaScript via manipulation of an unsanitized GET parameter during a forgotPasswordChange.jsp?key= password change...

6.1CVSS6.2AI score0.0068EPSS
Exploits3References2
Cvelist
Cvelistadded 2018/06/11 10:0 a.m.8 views

CVE-2018-12090

There is unauthenticated reflected cross-site scripting XSS in LAMS before 3.1 that allows a remote attacker to introduce arbitrary JavaScript via manipulation of an unsanitized GET parameter during a forgotPasswordChange.jsp?key= password change...

6.2AI score0.0068EPSS
Exploits3References2
CVE
CVEadded 2018/06/11 10:0 a.m.46 views

CVE-2018-12090

LAMS prior to 3.1 is affected by an unauthenticated reflected XSS that allows injection of arbitrary JavaScript via an unsanitized GET parameter in forgotPasswordChange.jsp?key=. This is triggered through remote access without authentication; impact is confined to script execution in the victim’s...

6.1CVSS6.2AI score0.0068EPSS
Exploits3References2Affected Software1
Tenable Nessus
Tenable Nessusadded 2010/02/24 12:0 a.m.25 views

Debian DSA-1986-1 : moodle - several vulnerabilities

Several vulnerabilities have been discovered in Moodle, an online course management system. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2009-4297 Multiple cross-site request forgery CSRF vulnerabilities have been discovered. - CVE-2009-4298 It has be...

6.8CVSS6.1AI score0.00889EPSS
Exploits0References16
OpenVAS
OpenVASadded 2010/02/10 12:0 a.m.25 views

Debian: Security Advisory (DSA-1986-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS6.5AI score0.00889EPSS
Exploits0References3
Prion
Prionadded 2009/12/16 1:30 a.m.15 views

Design/Logic Flaw

The LAMS module mod/lams for Moodle 1.8 before 1.8.11 and 1.9 before 1.9.7 stores the 1 username, 2 firstname, and 3 lastname fields within the user table, which allows attackers to obtain user account information via unknown vectors...

5CVSS6.2AI score0.00746EPSS
Exploits0References9Affected Software1
UbuntuCve
UbuntuCveadded 2009/12/16 1:30 a.m.22 views

CVE-2009-4298

The LAMS module mod/lams for Moodle 1.8 before 1.8.11 and 1.9 before 1.9.7 stores the 1 username, 2 firstname, and 3 lastname fields within the user table, which allows attackers to obtain user account information via unknown vectors...

5CVSS5.9AI score0.00746EPSS
Exploits0References1
NVD
NVDadded 2009/12/16 1:30 a.m.13 views

CVE-2009-4298

The LAMS module mod/lams for Moodle 1.8 before 1.8.11 and 1.9 before 1.9.7 stores the 1 username, 2 firstname, and 3 lastname fields within the user table, which allows attackers to obtain user account information via unknown vectors...

5CVSS6AI score0.00746EPSS
Exploits0References9
CVE
CVEadded 2009/12/16 1:0 a.m.65 views

CVE-2009-4298

CVE-2009-4298 affects Moodle through the LAMS module (mod/lams). Affected versions are Moodle 1.8 before 1.8.11 and 1.9 before 1.9.7. The vulnerability involves storing (1) username, (2) firstname, and (3) lastname in the user table, enabling disclosure of user account information. This is an inf...

5CVSS5.8AI score0.00746EPSS
Exploits0References9Affected Software1
Cvelist
Cvelistadded 2009/12/16 1:0 a.m.18 views

CVE-2009-4298

The LAMS module mod/lams for Moodle 1.8 before 1.8.11 and 1.9 before 1.9.7 stores the 1 username, 2 firstname, and 3 lastname fields within the user table, which allows attackers to obtain user account information via unknown vectors...

5.8AI score0.00746EPSS
Exploits0References9
Tenable Nessus
Tenable Nessusadded 2009/12/14 12:0 a.m.35 views

Fedora 12 : moodle-1.9.7-1.fc12 (2009-13065)

Moodle upstream has released latest stable versions 1.9.7 and 1.8.11, fixing multiple security issues. The list for 1.9.7 release: -------------------------- Security issues MSA-09-0022 - Multiple CSRF problems fixed MSA-09-0023 - Fixed user account disclosure in LAMS module MSA-09-0024 - Fixed...

7.5CVSS5.7AI score0.01245EPSS
Exploits0References14
Tenable Nessus
Tenable Nessusadded 2009/12/14 12:0 a.m.27 views

Fedora 10 : moodle-1.9.7-1.fc10 (2009-13040)

Moodle upstream has released latest stable versions 1.9.7 and 1.8.11, fixing multiple security issues. The list for 1.9.7 release: -------------------------- Security issues MSA-09-0022 - Multiple CSRF problems fixed MSA-09-0023 - Fixed user account disclosure in LAMS module MSA-09-0024 - Fixed...

7.5CVSS5.7AI score0.01245EPSS
Exploits0References14
Rows per page
Query Builder