13 matches found
CVE-2024-34312
Virtual Programming Lab for Moodle up to v4.2.3 was discovered to contain a cross-site scripting XSS vulnerability via the component vplide.js...
EUVD-2024-34721
Malicious code in bioql PyPI...
Qualcomm Chipsets 缓冲区错误漏洞
Qualcomm Chipsets are a family of chipsets from Qualcomm Incorporated USA. A buffer error vulnerability exists in Qualcomm Chipsets, which stems from the possibility of memory corruption through virtual CDM programming registers...
CVE-2024-34312
Virtual Programming Lab for Moodle up to v4.2.3 was discovered to contain a cross-site scripting XSS vulnerability via the component vplide.js...
CVE-2024-34312
Virtual Programming Lab for Moodle up to v4.2.3 was discovered to contain a cross-site scripting XSS vulnerability via the component vplide.js...
PT-2024-25784 · Moodle · Virtual Programming Lab
Name of the Vulnerable Software and Affected Versions: Virtual Programming Lab for Moodle versions up to 4.2.3 Description: The issue is related to a cross-site scripting XSS vulnerability. This vulnerability was found in the component vplide.js. Recommendations: For versions up to 4.2.3, update ...
CVE-2024-34312
CVE-2024-34312 affects Virtual Programming Lab for Moodle up to v4.2.3, with a cross-site scripting (XSS) vulnerability in the vplide.js component. The issue arises from insufficient input handling/escaping in vplide.js, enabling arbitrary script execution in the victim’s browser. Documented impa...
Virtual Programming VP-ASP 5.00 shopexd.asp SQL Injection Vulnerability (1)
No description provided by source. source: http://www.securityfocus.com/bid/8159/info It has been reported that VP-ASP does not sufficiently sanitize user input passed to the shopexd.asp script contained in the software. As a result, it may be possible for remote attackers to embed SQL commands...
Virtual Programming VP-ASP Shoperror Script 4/5 Cross-Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/10534/info A vulnerability exists in the software that may allow a remote user to launch cross-site scripting attacks. The problem is reported to exist due to improper sanitizing of user-supplied data in the 'shoperror.as...
Virtual Programming VP-ASP 4.00/5.00 shopsearch.asp SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/9133/info It has been reported that VP-ASP may be prone to a SQL injection vulnerability that may allow an attacker to disclose sensitive information by supplying malicious SQL code to the underlying database. The problem...
Virtual Programming VP-ASP 4/5 shopdisplayproducts.asp Cross-Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/9164/info A vulnerability has been reported to exist in VP-ASP software that may allow a remote user to launch cross-site scripting attacks. A remote attacker may exploit this issue to potentially execute HTML or script...
Virtual Programming VP-ASP 4.00/5.00 shopdisplayproducts.asp SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/9134/info It has been reported that VP-ASP may be prone to a SQL injection vulnerability that may allow an attacker to disclose sensitive information by supplying malicious SQL code to the underlying database. The problem...
Virtual Programming VP-ASP 5.00 shopexd.asp SQL Injection Vulnerability (2)
No description provided by source. source: http://www.securityfocus.com/bid/8159/info It has been reported that VP-ASP does not sufficiently sanitize user input passed to the shopexd.asp script contained in the software. As a result, it may be possible for remote attackers to embed SQL commands...