5 matches found
CVE-2025-15134
A security flaw has been discovered in yourmaileyes MOOC up to 1.17. This affects the function subreview of the file mooc/controller/MainController.java of the component Submission Handler. Performing manipulation of the argument review results in cross site scripting. The attack can be initiated...
CVE-2025-15134 yourmaileyes MOOC Submission MainController.java subreview cross site scripting
A security flaw has been discovered in yourmaileyes MOOC up to 1.17. This affects the function subreview of the file mooc/controller/MainController.java of the component Submission Handler. Performing manipulation of the argument review results in cross site scripting. The attack can be initiated...
CVE-2025-15134
Affects yourmaileyes MOOC up to version 1.17. The vulnerability resides in the subreview function of mooc/controller/MainController.java within the Submission Handler. Manipulation of the review argument enables cross-site scripting. The issue can be triggered remotely, and public exploitation is...
MOOC 代码注入漏洞
MOOC is an online video education website by yourmaileyes individual developer. A code injection vulnerability exists in MOOC 1.17 and earlier versions, which stems from the incorrect operation of the parameter review in the file mooc/controller/MainController.java, and could lead to cross-site...
mooc-agea.fr Cross Site Scripting vulnerability
Security Researcher MrRain1996 Helped patch 901 vulnerabilities Received 4 Coordinated Disclosure badges Received 9 recommendations , a holder of 4 badges for responsible and coordinated disclosure, found a security vulnerability affecting mooc-agea.fr website and its users. Following coordinated...