Filtered by vendor Oretnom23
Subscriptions
Filtered by product Online Learning System
Subscriptions
Total
3 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2021-40596 | 1 Oretnom23 | 1 Online Learning System | 2024-12-18 | 9.8 Critical |
| SQL injection vulnerability in Login.php in sourcecodester Online Learning System v2 by oretnom23, allows attackers to execute arbitrary SQL commands via the faculty_id parameter. | ||||
| CVE-2021-42580 | 1 Oretnom23 | 1 Online Learning System | 2024-12-18 | 9.8 Critical |
| Sourcecodester Online Learning System 2.0 is vunlerable to sql injection authentication bypass in admin login file (/admin/login.php) and authenticated file upload in (Master.php) file , we can craft these two vunlerablities to get unauthenticated remote command execution. | ||||
| CVE-2024-1970 | 1 Oretnom23 | 1 Online Learning System | 2024-12-18 | 4.3 Medium |
| A vulnerability, which was classified as problematic, was found in SourceCodester Online Learning System V2 1.0. Affected is an unknown function of the file /index.php. The manipulation of the argument page leads to cross site scripting. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. VDB-255126 is the identifier assigned to this vulnerability. | ||||
Page 1 of 1.