Open Eclass Platform Security Vulnerabilities and Issues — Open Eclass Platform CVE List

Lucene search

GunetOpen Eclass Platform

4 matches found

CVE•added 2024/08/12 3:15 p.m.•57 views

CVE-2024-38530

The Open eClass platform (formerly known as GUnet eClass) is a complete Course Management System. An arbitrary file upload vulnerability in the "save" functionality of the H5P module enables unauthenticated users to upload arbitrary files on the server's filesystem. This may lead in unrestricted RC...

9.8CVSS9.4AI score0.0059EPSS

CVE•added 2024/06/13 11:15 p.m.•52 views

CVE-2024-31777

File Upload vulnerability in openeclass v.3.15 and before allows an attacker to execute arbitrary code via a crafted file to the certbadge.php endpoint.

9.8CVSS7.7AI score0.17498EPSS

CVE•added 2024/03/14 10:15 p.m.•50 views

CVE-2024-26503

Unrestricted File Upload vulnerability in Greek Universities Network Open eClass v.3.15 and earlier allows attackers to run arbitrary code via upload of crafted file to certbadge.php endpoint.

9.1CVSS7.3AI score0.02162EPSS

CVE•added 2024/06/13 11:15 p.m.•43 views

CVE-2024-33253

Cross-site scripting (XSS) vulnerability in GUnet OpenEclass E-learning Platform version 3.15 and before allows a authenticated privileged attacker to execute arbitrary code via the title and description fields of the badge template editing function.

6CVSS6.4AI score0.00126EPSS