CVE-2025-3410

A vulnerability classified as critical was found in mymagicpower AIAS 20250308. This vulnerability affects unknown code of the file trainingplatform/train-platform/src/main/java/top/aias/training/controller/LocalStorageController.java. The manipulation of the argument File leads to unrestricted...

SAP Enable Now Code Issue Vulnerability

SAP Enable Now is a collaborative content creation, management and sharing platform from SAP. The platform is primarily used for e-learning and training in SAP and non-SAP systems. SAP Enable Now suffers from a code issue vulnerability that stems from an unimplemented X-FRAME-OPTIONS response...

Malicious code in training-platform-web (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 379e8de1999ec8549c82a99e55a439a22fba37f2c10ec080e8c355a42252b7aa Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2022-6634 Malicious code in training-platform-web (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 379e8de1999ec8549c82a99e55a439a22fba37f2c10ec080e8c355a42252b7aa Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Exploit for SQL Injection in Zabbix

This is an offensive tool repository for Vulhub, a web application vulnerability training platform. The repository contains various tools and exploits for testing and demonstrating vulnerabilities in different web applications and frameworks. The primary classification of this repository is: "It ...

SQL Injection Vulnerability in Residency Standardized Training Platform of Chongqing Yuanqiu Technology Co.

Residency standardized training platform is a large-scale residency training platform for basic education, clinical guidance, assessment and training of residents in one. A SQL injection vulnerability exists in the residency training platform of Chongqing Yuanqiu Technology Co. An attacker can...

Arbitrary file reading vulnerability in the accounting training platform of Xiamen NetZhong.com Software Co.

Ltd. is a high-tech enterprise specializing in the development, service and sales of teaching software products for teaching accounting. Xiamen NetZhongNET Software Co., Ltd. accounting training teaching platform there is an arbitrary file reading vulnerability, attackers can use the vulnerabilit...

File Uploading Vulnerability in the Web-based Training Platform of Beijing Boswell Information Technology Co.

Ltd. is one of the "one-stop" providers of e-learning, online examination and knowledge management software products and their total solutions. A file upload vulnerability exists in the online training platform of Beijing Boshiway Information Technology Co., Ltd, which can be exploited by attacke...

SQL Injection Vulnerability in Betten's Innovation and Entrepreneurship Training Platform System

Hangzhou Berten Technology Co., Ltd. is a leading manufacturer of innovation and entrepreneurship practice education in China, and currently has more than 30 offices or branches across the country. There is a SQL injection vulnerability in the Beiten Innovation and Entrepreneurship Practical...

U.S. Dept Of Defense: Online training material disclosing username and password

Summary: A training document is revealing username and password details for what appears to be a DoD training system Description: Using the google dork site:.mil ext:ppt intext:password, I was able to find a number of powerpoint documents on .mil websites that include username and passwords. This...

Study Vulnerability Assessment in Tenable University for free

Not so long ago, Tenable presented renewed online training platform - Tenable University. It is publicly available even for non-customers, for example, for Nessus Home users. However, not all courses are available in this case. I decided to check it out, registering as non-customer. Logged in...

Mobile Application Security Training Platform: Security Shepherd

The OWASP Security Shepherd project is a web and mobile application security training platform. Security Shepherd has been designed to foster and improve security awareness among a varied skill-set demographic. The aim of this project is to take AppSec novices or experienced engineers and sharpen...

OWASP Security Shepherd - Web And Mobile Application Security Training Platform

The OWASP Security Shepherd Project is a web and mobile application security training platform. Security Shepherd has been designed to foster and improve security awareness among a varied skill-set demographic. The aim of this project is to take AppSec novices or experienced engineers and sharpen...

SQL Injection Vulnerability in Teacher Training Platform of Zibo Kuanzheng Digital Network Technology Co.

Teacher training platform is a teaching system developed by Zibo Kuanzheng Digital Network Technology Co. A SQL injection vulnerability exists in the Teacher Training Platform of Zibo Kuanzheng Digital Network Technology Co. Ltd, which allows attackers to exploit this vulnerability to obtain...