20 matches found
EUVD-2018-8759
Malware in sbrugna...
EUVD-2018-8758
Malware in sbrugna...
MAL-2025-9670 Malicious code in @wisetail/wds-selector (npm)
The package @wisetail/wds-selector was found to contain malicious code...
MAL-2025-9667 Malicious code in @wisetail/wds-button (npm)
The package @wisetail/wds-button was found to contain malicious code...
MAL-2025-9664 Malicious code in @wisetail/browserslist-config (npm)
The package @wisetail/browserslist-config was found to contain malicious code...
MAL-2025-9668 Malicious code in @wisetail/wds-gate (npm)
The package @wisetail/wds-gate was found to contain malicious code...
MAL-2025-9666 Malicious code in @wisetail/tokens (npm)
The package @wisetail/tokens was found to contain malicious code...
MAL-2025-9669 Malicious code in @wisetail/wds-icon (npm)
The package @wisetail/wds-icon was found to contain malicious code...
MAL-2025-9665 Malicious code in @wisetail/style-provider (npm)
The package @wisetail/style-provider was found to contain malicious code...
Wisetail Learning Ecosystem 4.11.6 Insecure Direct Object Reference
Title: MULTIPLE IDOR VUNLERABILITies ON WISETAIL LEARNING ECOSYSTEM LE UPTO V4.11.6 Date: 12/09/2019 Author: S. M. Zia Ur Rashid Vendor Homepage: wisetail.com Author Contact: https://www.linkedin.com/in/ziaurrashid/ Affected Version: = 4.11.6 Assaigned CVE: CVE-2018-16970, CVE-2018-16971...
CVE-2018-16970
Wisetail Learning Ecosystem LE through v4.11.6 allows insecure direct object reference IDOR attacks to download non-purchased course files via a modified id parameter...
CVE-2018-16971
Wisetail Learning Ecosystem LE through v4.11.6 allows insecure direct object reference IDOR attacks to access non-purchased course contents quiz / test via a modified id parameter...
CVE-2018-16970
Wisetail Learning Ecosystem LE through v4.11.6 allows insecure direct object reference IDOR attacks to download non-purchased course files via a modified id parameter...
Design/Logic Flaw
Wisetail Learning Ecosystem LE through v4.11.6 allows insecure direct object reference IDOR attacks to access non-purchased course contents quiz / test via a modified id parameter...
Design/Logic Flaw
Wisetail Learning Ecosystem LE through v4.11.6 allows insecure direct object reference IDOR attacks to download non-purchased course files via a modified id parameter...
CVE-2018-16971
Wisetail Learning Ecosystem LE through v4.11.6 allows insecure direct object reference IDOR attacks to access non-purchased course contents quiz / test via a modified id parameter...
CVE-2018-16970
Wisetail Learning Ecosystem LE through v4.11.6 allows insecure direct object reference IDOR attacks to download non-purchased course files via a modified id parameter...
CVE-2018-16971
Wisetail Learning Ecosystem LE through v4.11.6 allows insecure direct object reference IDOR attacks to access non-purchased course contents quiz / test via a modified id parameter...
CVE-2018-16971
Wisetail Learning Ecosystem (LE) up to version 4.11.6 suffers from an insecure direct object reference (IDOR) vulnerability that allows an attacker to access non-purchased course contents (quiz/test) by altering the id parameter. The root cause is improper access control for object references, en...
CVE-2018-16970
CVE-2018-16970 affects Wisetail Learning Ecosystem (LE) up to version 4.11.6, where an insecure direct object reference (IDOR) enables downloading non-purchased course files by modifying the id parameter. The connected PacketStorm entry corroborates multiple IDOR vulnerabilities affecting LE ≤ 4....