Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2022-6249

Malicious code in bioql PyPI...

7.5CVSS7.5AI score0.00302EPSS
Exploits0References4
Prion
Prionadded 2023/06/29 3:15 a.m.11 views

Design/Logic Flaw

The "Submission Web Form" of Turnitin LTI tool/plugin version 1.3 is affected by HTML Injection attacks. The security issue affects the submission web form "id" and "title" HTTP POST parameters where the students submit their reports for similarity/plagiarism checks...

4.9CVSS5.9AI score0.00787EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichmentadded 2023/06/29 12:0 a.m.14 views

CVE-2023-34831

The "Submission Web Form" of Turnitin LTI tool/plugin version 1.3 is affected by HTML Injection attacks. The security issue affects the submission web form "id" and "title" HTTP POST parameters where the students submit their reports for similarity/plagiarism checks...

7.5AI score0.00787EPSS
Exploits1References2
Positive Technologies
Positive Technologiesadded 2023/06/29 12:0 a.m.2 views

PT-2023-25018 · Turnitin · Turnitin Lti Tool

Name of the Vulnerable Software and Affected Versions: Turnitin LTI tool/plugin version 1.3 Description: The issue affects the "Submission Web Form" of the Turnitin LTI tool/plugin, where students submit their reports for similarity/plagiarism checks. Specifically, the submission web form is...

5.4CVSS5.6AI score0.00787EPSS
Exploits1References3
Veracode
Veracodeadded 2023/02/02 4:55 a.m.18 views

Missing Authorization

lticonsumerxblock is vulnerable to Missing Authorization. The vulnerability exists in signals.py because of the lack of security validation in the LTI Tool which allows attackers to submit scores for any LTI XBlock on the platform using the malicious LTI tool...

5.4CVSS5.7AI score0.00151EPSS
Exploits0References2Affected Software1
CVE
CVEadded 2023/01/25 5:39 a.m.120 views

CVE-2023-23611

The CVE-2023-23611 entry concerns the LTI Consumer XBlock for Open edX. Affected: LTI Consumer XBlock versions 7.0.0 and above, before 7.2.2. Issue: Missing Authorization allows any integrated LTI tool to post grades for any LTI XBlock by guessing the block location via the resource_link_id, comp...

5.4CVSS5.4AI score0.00151EPSS
Exploits0References1Affected Software1
CNNVD
CNNVDadded 2022/07/15 12:0 a.m.2 views

LTI 1.3 Tool Library 加密问题漏洞

The LTI 1.3 Tool Library is a library of LTI 1.3 tool providers for building IMS certifications in PHP. A security vulnerability exists in the LTI 1.3 Tool Library prior to version 5.0, which stems from LTI 1.3 Tool Library is a library for building LTI 1.3 tool providers for IMS authentication i...

7.5CVSS7.3AI score0.00302EPSS
Exploits0References2
Github Security Blog
Github Security Blogadded 2022/05/13 1:14 a.m.16 views

Moodle Users could elevate their role when accessing the LTI tool on a provider site

A vulnerability was found in moodle before versions 3.6.3, 3.5.5 and 3.4.8. Users could assign themselves an escalated role within courses or content accessed via LTI, by modifying the request to the LTI publisher site...

8.8CVSS7AI score0.00374EPSS
Exploits0References11Affected Software1
Rows per page
Query Builder