Note:
This project will be discontinued after December 13, 2021. [more]
Product:
E\-Learning_management_system
(Lopalopa)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 24 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2024-12-09 | CVE-2024-54922 | A SQL Injection was found in /admin/edit_user.php of kashipara E-learning Management System v1.0, which allows remote attackers to execute arbitrary SQL commands to get unauthorized database access via the firstname, lastname, and username parameters. | E\-Learning_management_system | 7.2 | ||
| 2024-12-09 | CVE-2024-54930 | Kashipara E-learning Management System v1.0 is vulnerable to SQL Injection in /admin/delete_student.php. | E\-Learning_management_system | 7.2 | ||
| 2024-12-09 | CVE-2024-54933 | Kashipara E-learning Management System v1.0 is vulnerable to SQL Injection in /admin/delete_content.php. | E\-Learning_management_system | 7.2 | ||
| 2024-12-09 | CVE-2024-54937 | A Directory Listing issue was found in Kashipara E-Learning Management System v1.0, which allows remote attackers to access sensitive files and directories via /admin/assets. | E\-Learning_management_system | 5.3 |