Trainme Academy 安全漏洞

Trainme Academy is a leading quality education and training solution from Trainme, Inc. A security vulnerability exists in Trainme Academy version v.1.3.2. A remote attacker exploits the vulnerability to obtain sensitive information via the informacion, idcurso, and tit parameters...

PT-2024-21956 · Unknown · Trainme Academy

Name of the Vulnerable Software and Affected Versions: Trainme Academy version Ichin v.1.3.2 Description: The issue allows a remote attacker to obtain sensitive information. This is achieved via the informacion, idcurso, and tit parameters. Recommendations: For Trainme Academy version Ichin...

CVE-2018-20727

Multiple command injection vulnerabilities in NeDi before 1.7Cp3 allow authenticated users to execute code on the server side via the flt parameter to Nodes-Traffic.php, the dv parameter to Devices-Graph.php, or the tit parameter to drawmap.php...

CVE-2018-20727

CVE-2018-20727 affects NeDi prior to 1.7Cp3. The vulnerability allows authenticated users to perform server-side command execution via user-controlled parameters: flt (Nodes-Traffic.php), dv (Devices-Graph.php), or tit (drawmap.php). This is a command-injection flaw arising from insufficient inpu...