7 matches found
CVE-2023-4224
Unrestricted file upload in /main/inc/ajax/dropbox.ajax.php in Chamilo LMS = v1.11.24 allows authenticated attackers with learner role to obtain remote code execution via uploading of PHP files...
CVE-2023-4226
Unrestricted file upload in /main/inc/ajax/work.ajax.php in Chamilo LMS = v1.11.24 allows authenticated attackers with learner role to obtain remote code execution via uploading of PHP files...
Exploit for Integer Underflow (Wrap or Wraparound) in Microsoft
It is an offensive tool for fuzzing. This repository contains a...
Moodle Cross-Site Scripting Vulnerability (CNVD-2021-07506)
Moodle is a learning platform designed to provide educators, administrators, and learners with a powerful, secure, and integrated system for creating personalized learning environments. A reflected cross-site scripting vulnerability exists in Moodle versions prior to 3.10.1. The vulnerability ste...
8Belts exposes personal data of 100,000 e-learners globally
By Deeba Ahmed 8Belts database was hosted on a misconfigured Amazon Web Services AWS S3 bucket. This is a post from HackRead.com Read the original post: 8Belts exposes personal data of 100,000 e-learners globally...
GHSA-3J5X-7CCF-PPGM Cross-site scripting in recommender-xblock
Recommender before 1.3.1 allows XSS. It is possible for a learner to craft a fake resource to recommender, that includes script which could possibly steal credentials from staff if they are lured into viewing the recommended resource...
oxfordlearnersdictionaries.com XSS vulnerability
Open Bug Bounty ID: OBB-401544 Description| Value ---|--- Affected Website:| oxfordlearnersdictionaries.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...