CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

13 matches found

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2018-8759

Malware in sbrugna...

4.3CVSS4.8AI score0.00138EPSS

Exploits2References3

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2018-8758

Malware in sbrugna...

4.3CVSS4.8AI score0.00199EPSS

Exploits2References3

Packet Storm•added 2018/09/13 12:0 a.m.•52 views

Wisetail Learning Ecosystem 4.11.6 Insecure Direct Object Reference

Title: MULTIPLE IDOR VUNLERABILITies ON WISETAIL LEARNING ECOSYSTEM LE UPTO V4.11.6 Date: 12/09/2019 Author: S. M. Zia Ur Rashid Vendor Homepage: wisetail.com Author Contact: https://www.linkedin.com/in/ziaurrashid/ Affected Version: = 4.11.6 Assaigned CVE: CVE-2018-16970, CVE-2018-16971...

4.7AI score0.00199EPSS

Exploits3

OSV•added 2018/09/12 8:29 p.m.•3 views

CVE-2018-16970

Wisetail Learning Ecosystem LE through v4.11.6 allows insecure direct object reference IDOR attacks to download non-purchased course files via a modified id parameter...

4.3CVSS5.8AI score0.00199EPSS

Exploits2References1

OSV•added 2018/09/12 8:29 p.m.•1 views

CVE-2018-16971

Wisetail Learning Ecosystem LE through v4.11.6 allows insecure direct object reference IDOR attacks to access non-purchased course contents quiz / test via a modified id parameter...

4.3CVSS5.8AI score

Exploits0References1

NVD•added 2018/09/12 8:29 p.m.•7 views

CVE-2018-16970

Wisetail Learning Ecosystem LE through v4.11.6 allows insecure direct object reference IDOR attacks to download non-purchased course files via a modified id parameter...

4.3CVSS4.6AI score0.00199EPSS

Exploits2References1

Prion•added 2018/09/12 8:29 p.m.•12 views

Design/Logic Flaw

Wisetail Learning Ecosystem LE through v4.11.6 allows insecure direct object reference IDOR attacks to access non-purchased course contents quiz / test via a modified id parameter...

4CVSS4.6AI score0.00138EPSS

Exploits2References1Affected Software1

Prion•added 2018/09/12 8:29 p.m.•14 views

Design/Logic Flaw

Wisetail Learning Ecosystem LE through v4.11.6 allows insecure direct object reference IDOR attacks to download non-purchased course files via a modified id parameter...

4CVSS4.6AI score0.00199EPSS

Exploits2References1Affected Software1

NVD•added 2018/09/12 8:29 p.m.•8 views

CVE-2018-16971

Wisetail Learning Ecosystem LE through v4.11.6 allows insecure direct object reference IDOR attacks to access non-purchased course contents quiz / test via a modified id parameter...

4.3CVSS4.6AI score0.00138EPSS

Exploits2References1

Cvelist•added 2018/09/12 8:0 p.m.•10 views

CVE-2018-16970

Wisetail Learning Ecosystem LE through v4.11.6 allows insecure direct object reference IDOR attacks to download non-purchased course files via a modified id parameter...

4.6AI score0.00199EPSS

Exploits2References1

Cvelist•added 2018/09/12 8:0 p.m.•12 views

CVE-2018-16971

Wisetail Learning Ecosystem LE through v4.11.6 allows insecure direct object reference IDOR attacks to access non-purchased course contents quiz / test via a modified id parameter...

4.6AI score0.00138EPSS

Exploits2References1

CVE•added 2018/09/12 8:0 p.m.•34 views

CVE-2018-16971

Wisetail Learning Ecosystem (LE) up to version 4.11.6 suffers from an insecure direct object reference (IDOR) vulnerability that allows an attacker to access non-purchased course contents (quiz/test) by altering the id parameter. The root cause is improper access control for object references, en...

4.3CVSS4.6AI score0.00138EPSS

Exploits2References1Affected Software1

CVE•added 2018/09/12 8:0 p.m.•38 views

CVE-2018-16970

CVE-2018-16970 affects Wisetail Learning Ecosystem (LE) up to version 4.11.6, where an insecure direct object reference (IDOR) enables downloading non-purchased course files by modifying the id parameter. The connected PacketStorm entry corroborates multiple IDOR vulnerabilities affecting LE ≤ 4....

4.3CVSS4.6AI score0.00199EPSS

Exploits2References1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by