6 matches found
CVE-2025-41009
SQL injection vulnerability in the DRED virtual campus platform. This vulnerability allows an attacker to retrieve, create, update, and delete data from the database by sending a POST request using the ‘buscame’ parameter in ‘/catalogoc/catalogo.php’...
CVE-2025-41009 SQL injection on the virtual campus platform of Diseño de Recursos Educativos
SQL injection vulnerability in the DRED virtual campus platform. This vulnerability allows an attacker to retrieve, create, update, and delete data from the database by sending a POST request using the ‘buscame’ parameter in ‘/catalogoc/catalogo.php’...
CVE-2025-41009 SQL injection on the virtual campus platform of Diseño de Recursos Educativos
SQL injection vulnerability in the DRED virtual campus platform. This vulnerability allows an attacker to retrieve, create, update, and delete data from the database by sending a POST request using the ‘buscame’ parameter in ‘/catalogoc/catalogo.php’...
Diseño de Recursos Educativos Virtual Campus Platform SQL注入漏洞
Diseño de Recursos Educativos Virtual Campus Platform is a virtual classroom platform from Diseño de Recursos Educativos, Spain. Diseño de Recursos Educativos Virtual Campus Platform suffers from a SQL injection vulnerability that stems from incorrect manipulation of the parameter buscame in the...
Chamilo LMS 1.9.10 /main/calendar/agenda_list.php 跨站脚本漏洞
I. Overview ======================================================== Chamilo LMS 1.9.10 or prior versions are prone to a multiple Cross-Site Scripting Stored + Reflected & CSRF vulnerabilities. These vulnerabilities allows an attacker to gain control over valid user accounts in LMS, perform...
Chamilo LMS 1.9.10 - Multiple Vulnerabilities
Chamilo LMS 1.9.10 - Multiple Vulnerabilities I. Overview ======================================================== Chamilo LMS 1.9.10 or prior versions are prone to a multiple Cross-Site Scripting Stored + Reflected & CSRF vulnerabilities. These vulnerabilities allows an attacker to gain control...