Lucene search
K

9 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2024-34374

Malicious code in bioql PyPI...

9.4CVSS6.6AI score0.00726EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/09/01 4:17 a.m.4 views

CVE-2025-54946

A SQL injection vulnerability in SUNNET Corporate Training Management System before 10.11 allows remote attackers to execute arbitrary SQL commands...

9.8CVSS8.5AI score0.00452EPSS
Exploits0References1
NVD
NVD
added 2025/08/30 4:15 a.m.5 views

CVE-2025-54943

A missing authorization vulnerability in SUNNET Corporate Training Management System before 10.11 allows remote attackers to perform unauthorized application deployment due to the absence of proper access control checks...

9.8CVSS0.00466EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2025/02/18 12:0 a.m.7 views

The vulnerability of the WPLMS training management system, a content management system for WordPress websites, allows an attacker to gain access to read, modify, or delete data.

The vulnerability of the WPLMS training management system involves incorrect restrictions on the path to the restricted access catalog. Exploiting this vulnerability could allow an attacker to gain read, modify, or delete access to data...

10CVSS8.1AI score0.33856EPSS
Exploits2References3Affected Software1
NVD
NVD
added 2024/12/19 4:15 a.m.8 views

CVE-2024-11984

A unrestricted upload of file with dangerous type vulnerability in epaper draft function in Corporate Training Management System before 10.13 allows remote authenticated users to bypass file upload restrictions and perform arbitrary system commands with SYSTEM privilege via a crafted ZIP file...

9.4CVSS0.00726EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/12/19 4:1 a.m.19 views

CVE-2024-11984 SUNNET Corporate Training Management System - Unrestricted Upload of File with Dangerous Type

A unrestricted upload of file with dangerous type vulnerability in epaper draft function in Corporate Training Management System before 10.13 allows remote authenticated users to bypass file upload restrictions and perform arbitrary system commands with SYSTEM privilege via a crafted ZIP file...

9.4CVSS0.00726EPSS
Exploits0References1
CVE
CVE
added 2024/12/19 4:1 a.m.47 views

CVE-2024-11984

The CVE-2024-11984 vulnerability affects the Corporate Training Management System, specifically the epaper draft function. It describes an unrestricted upload of files with dangerous types that lets remote authenticated users bypass upload restrictions and run arbitrary commands with SYSTEM privi...

9.4CVSS6.6AI score0.00726EPSS
Exploits0References1
CNVD
CNVD
added 2017/06/21 12:0 a.m.1 views

Arbitrary file upload vulnerability in EduWork uplaod.php page

EduWork is an almost open source training institution management system, focusing on solving the daily affairs of training institutions and the entire management. An arbitrary file upload vulnerability exists in the EduWork uplaod.php page. Attackers can use this vulnerability to obtain...

7.2AI score
Exploits0
CNVD
CNVD
added 2015/08/14 12:0 a.m.2 views

Online Training Management System Generalized Arbitrary File Download Vulnerability of Beijing Jianfeng Hexun Technology Co.

Peak Hutchinson's Online Training Management System is a software system that provides full-process management of training activities for learning organizations. There is a generic arbitrary file download vulnerability in the online training management system of Beijing Summit Hexun Technology Co...

6.9AI score
Exploits0References1
Rows per page
Query Builder