10 matches found
Linux Distros Unpatched Vulnerability : CVE-2023-28334
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Authenticated users were able to enumerate other users' names via the learning plans page. CVE-2023-28334 Note that Nessus relies on the presence of the package...
CVE-2025-9106 Portabilis i-Diario Informações Adicionais /planos-de-ensino-por-disciplina cross site scripting
A vulnerability was found in Portabilis i-Diario up to 1.5.0. This affects an unknown function of the file /planos-de-ensino-por-disciplina/ of the component Informações Adicionais Page. Performing manipulation of the argument Parecer/Conteúdos/Objetivos results in cross site scripting. The attac...
Information Disclosure
moodle/moodle is vulnerable to Information Disclosure. The vulnerability exists because authenticated user privileges are not properly validated in pagehelper.php which allows an attacker to access sensitive information and enumerate other users names via the learning plans page...
CVE-2023-28334
Authenticated users were able to enumerate other users' names via the learning plans page...
CVE-2023-28334
Authenticated users were able to enumerate other users' names via the learning plans page...
UBUNTU-CVE-2023-28334
Authenticated users were able to enumerate other users' names via the learning plans page...
CVE-2023-28334 Moodle: users' name enumeration possible via idor on learning plans page
Authenticated users were able to enumerate other users' names via the learning plans page...
lessonplanspage.com XSS vulnerability
Open Bug Bounty ID: OBB-594873 Description| Value ---|--- Affected Website:| lessonplanspage.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
secure.fantasypros.com XSS vulnerability
Vulnerable URL: https://secure.fantasypros.com/plans/?sport=fmr42"...
kenectchicago.com XSS vulnerability
Vulnerable URL: http://kenectchicago.com/floor-plans.php?moveindate==1"...