Markus Security Vulnerabilities and Issues — Markus CVE List

Lucene search

MarkusprojectMarkus

3 matches found

CVE•added 2024/11/18 5:15 p.m.•43 views

CVE-2024-47820

MarkUs, a web application for the submission and grading of student assignments, is vulnerable to path traversal in versions prior to 2.4.8. Authenticated instructors may download any file on the web server MarkUs is running on, depending on the file permissions. MarkUs v2.4.8 has addressed this is...

5.7CVSS5.5AI score0.00059EPSS

CVE•added 2024/11/18 8:15 p.m.•43 views

CVE-2024-51499

MarkUs is a web application for the submission and grading of student assignments. In versions prior to 2.4.8, an arbitrary file write vulnerability accessible via the update_files method of the SubmissionsController allows authenticated users (e.g. students) to write arbitrary files to any locatio...

8.8CVSS7.3AI score0.00903EPSS

CVE•added 2024/11/18 8:15 p.m.•39 views

CVE-2024-51743

MarkUs is a web application for the submission and grading of student assignments. In versions prior to 2.4.8, an arbitrary file write vulnerability in the update/upload/create file methods in Controllers allows authenticated instructors to write arbitrary files to any location on the web server Ma...

8.8CVSS8.9AI score0.00903EPSS