12 matches found
CVE-2025-8323
The e-School from Ventem has a Arbitrary File Upload vulnerability, allowing unauthenticated remote attackers to upload and execute web shell backdoors, thereby enabling arbitrary code execution on the server...
CVE-2025-8322
The e-School from Ventem has a Missing Authorization vulnerability, allowing remote attackers with regular privilege to access administrator functions, including creating, modifying, and deleting accounts. They can even escalate any account to system administrator privilege...
CVE-2025-8323 Ventem|e-School - Arbitrary File Upload
The e-School from Ventem has a Arbitrary File Upload vulnerability, allowing unauthenticated remote attackers to upload and execute web shell backdoors, thereby enabling arbitrary code execution on the server...
CVE-2025-8323
The CVE-2025-8323 entry concerns Ventem’s e-School platform, where an Arbitrary File Upload vulnerability allows unauthenticated remote attackers to upload and execute a web shell, enabling arbitrary code execution on the server. The vulnerability is linked to a flaw in the file-upload flow, with...
CVE-2025-8323 Ventem|e-School - Arbitrary File Upload
The e-School from Ventem has a Arbitrary File Upload vulnerability, allowing unauthenticated remote attackers to upload and execute web shell backdoors, thereby enabling arbitrary code execution on the server...
CVE-2025-8322 Ventem|e-School - Missing Authorization
The e-School from Ventem has a Missing Authorization vulnerability, allowing remote attackers with regular privilege to access administrator functions, including creating, modifying, and deleting accounts. They can even escalate any account to system administrator privilege...
CVE-2025-8322 Ventem|e-School - Missing Authorization
The e-School from Ventem has a Missing Authorization vulnerability, allowing remote attackers with regular privilege to access administrator functions, including creating, modifying, and deleting accounts. They can even escalate any account to system administrator privilege...
CVE-2025-8322
The CVE-2025-8322 entry concerns Ventem’s e-School platform (e-School) with a Missing Authorization vulnerability. Descriptions across multiple sources consistently state that remote attackers operating with regular privileges can access administrator functions—creating, modifying, and deleting a...
Ventem e-School 代码问题漏洞
Ventem e-School is a smart school platform from Feiyu Hi-Tech Ventem of Taiwan, China. A code issue vulnerability exists in Ventem e-School, which originates from the arbitrary file upload feature and could lead to remote code execution...
PT-2025-31375 · Ventem · E-School
Name of the Vulnerable Software and Affected Versions: e-School from Ventem affected versions not specified Description: The e-School from Ventem has an Arbitrary File Upload vulnerability. This allows unauthenticated remote attackers to upload and execute web shell backdoors, enabling arbitrary...
PT-2025-31374 · E-School · E-School
Name of the Vulnerable Software and Affected Versions: e-School affected versions not specified Description: The e-School system contains a missing authorization flaw. This allows remote attackers with regular privileges to access administrator functions, including creating, modifying, and deleti...
Ventem e-School 安全漏洞
Ventem e-School is a smart school platform from Feiyu Hi-Tech Ventem of Taiwan, China. A security vulnerability exists in Ventem e-School, which stems from a lack of authorization checking and could lead to elevated privileges...