Unspecified vulnerability in the php2phps function in Claroline before 1.8.9 has unknown impact and attack vectors.
6.6AI Score
0.003EPSS
SQL injection vulnerability in Claroline before 1.8.9 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
8.4AI Score
0.002EPSS
Cross-site scripting (XSS) vulnerability in Claroline before 1.8.9 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
5.7AI Score
0.002EPSS