16 matches found
EUVD-2024-49163
Malicious code in bioql PyPI...
EUVD-2024-49359
Malicious code in bioql PyPI...
CVE-2024-8417
A vulnerability was found in 云课网络科技有限公司 Yunke Online School System up to 1.5.5. It has been declared as problematic. This vulnerability affects unknown code of the file /admin/educloud/videobind.html. The manipulation leads to inclusion of sensitive information in source code. The attack can be...
CVE-2024-8707
A vulnerability was found in 云课网络科技有限公司 Yunke Online School System up to 3.0.6. It has been declared as problematic. This vulnerability affects the function downfile of the file application/admin/controller/Appadmin.php. The manipulation of the argument url leads to path traversal. The attack can...
CVE-2024-8707 云课网络科技有限公司 Yunke Online School System Appadmin.php downfile path traversal
A vulnerability was found in 云课网络科技有限公司 Yunke Online School System up to 3.0.6. It has been declared as problematic. This vulnerability affects the function downfile of the file application/admin/controller/Appadmin.php. The manipulation of the argument url leads to path traversal. The attack can...
CVE-2024-8707 云课网络科技有限公司 Yunke Online School System Appadmin.php downfile path traversal
A vulnerability was found in 云课网络科技有限公司 Yunke Online School System up to 3.0.6. It has been declared as problematic. This vulnerability affects the function downfile of the file application/admin/controller/Appadmin.php. The manipulation of the argument url leads to path traversal. The attack can...
CVE-2024-8707
The CVE-2024-8707 vulnerability affects Yunke Online School System (versions up to 3.0.6). The flaw resides in the downfile function of application/admin/controller/Appadmin.php, where the url parameter enables path traversal. Exploitation can be performed remotely and exploits have been disclose...
CVE-2024-8417
A vulnerability was found in 云课网络科技有限公司 Yunke Online School System up to 1.5.5. It has been declared as problematic. This vulnerability affects unknown code of the file /admin/educloud/videobind.html. The manipulation leads to inclusion of sensitive information in source code. The attack can be...
CVE-2024-8417
The CVE-2024-8417 entry concerns Yunke Online School System (versions up to 1.5.5). A flaw in the /admin/educloud/videobind.html component can cause sensitive information to be included in the source code. Exploitation is remote with high attack complexity and no user interaction required, and th...
CVE-2024-8417 云课网络科技有限公司 Yunke Online School System videobind.html sensitive information in source
A vulnerability was found in 云课网络科技有限公司 Yunke Online School System up to 1.5.5. It has been declared as problematic. This vulnerability affects unknown code of the file /admin/educloud/videobind.html. The manipulation leads to inclusion of sensitive information in source code. The attack can be...
CVE-2024-8417 云课网络科技有限公司 Yunke Online School System videobind.html sensitive information in source
A vulnerability was found in 云课网络科技有限公司 Yunke Online School System up to 1.5.5. It has been declared as problematic. This vulnerability affects unknown code of the file /admin/educloud/videobind.html. The manipulation leads to inclusion of sensitive information in source code. The attack can be...
Bumblebee Online School System V5.0.4 Exists Arbitrary File Upload Vulnerability
Bumblebee Online School System is an open source video management system for small and medium-sized enterprises SMEs using the excellent domestic open source framework THinkPHP, based on PHP+MySQL development and B/S architecture. Hornet Online School System V5.0.4 exists arbitrary file upload...
Command Execution Vulnerability in the Single-Institution Online School System of Hefei Qifan Network Technology Co.
Hefei Qifan Network Technology Co., Ltd. is engaged in website construction, website optimization, web hosting, domain name registration and other network services. Hefei Qifan Network Technology Co., Ltd. single-agency online school system there is a command execution vulnerability, attackers ca...
XSS Vulnerability in NewLogo New Beginnings Online School System
NewLogo New Beginning Online School System is an online education platform suitable for individuals and educational institutions to build. There is an XSS vulnerability in NewLogo New Beginning Online School System, which can be exploited by attackers to obtain sensitive information from websites...
XSS Vulnerability in the Online School System of Beijing Yi Zhi Lu Technology Co.
Ltd. is a high-tech enterprise focusing on the research and development of online education products and one-stop service of online education solutions. There is an xss vulnerability in the online school system of Beijing EZL Technology Co., Ltd. that can be exploited by attackers to inject...
xss vulnerability in online school system
Online School System is an online education platform developed by Beijing IncuTime Technology Co. An xss vulnerability exists in the evaluation and modification of personal information of the online school system, which can be exploited by attackers to inject arbitrary Web script or HTML...