Vulnerabilities (CVE)

  1. OpenCVE
  2. Vulnerabilities (CVE)
Filtered by vendor Lopalopa Subscribe
Filtered by product E-learning Management System
Total 14 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2024-50836 1 Lopalopa 1 E-learning Management System 2024-11-18 N/A 4.8 MEDIUM
A Stored Cross-Site Scripting (XSS) vulnerability was found in /admin/teachers.php in KASHIPARA E-learning Management System Project 1.0. This vulnerability allows remote attackers to execute arbitrary scripts via the firstname and lastname parameters.
CVE-2024-50826 1 Lopalopa 1 E-learning Management System 2024-11-18 N/A 7.2 HIGH
A SQL Injection vulnerability was found in /admin/add_content.php in kashipara E-learning Management System Project 1.0 via the title and content parameters.
CVE-2024-50825 1 Lopalopa 1 E-learning Management System 2024-11-18 N/A 7.2 HIGH
A SQL Injection vulnerability was found in /admin/school_year.php in kashipara E-learning Management System Project 1.0 via the school_year parameter.
CVE-2024-50824 1 Lopalopa 1 E-learning Management System 2024-11-18 N/A 7.2 HIGH
A SQL Injection vulnerability was found in /admin/class.php in kashipara E-learning Management System Project 1.0 via the class_name parameter.
CVE-2024-50823 1 Lopalopa 1 E-learning Management System 2024-11-18 N/A 9.8 CRITICAL
A SQL Injection vulnerability was found in /admin/login.php in kashipara E-learning Management System Project 1.0 via the username and password parameters.
CVE-2024-50835 1 Lopalopa 1 E-learning Management System 2024-11-18 N/A 7.2 HIGH
A SQL Injection vulnerability was found in /admin/edit_student.php in KASHIPARA E-learning Management System Project 1.0 via the cys, un, ln, fn, and id parameters.
CVE-2024-50834 1 Lopalopa 1 E-learning Management System 2024-11-18 N/A 7.2 HIGH
A SQL Injection was found in /admin/teachers.php in KASHIPARA E-learning Management System Project 1.0 via the firstname and lastname parameters.
CVE-2024-50833 1 Lopalopa 1 E-learning Management System 2024-11-18 N/A 9.8 CRITICAL
A SQL Injection vulnerability was found in /login.php in KASHIPARA E-learning Management System Project 1.0 via the username and password parameters.
CVE-2024-50832 1 Lopalopa 1 E-learning Management System 2024-11-18 N/A 7.2 HIGH
A SQL Injection vulnerability was found in /admin/edit_class.php in kashipara E-learning Management System Project 1.0 via the class_name parameter.
CVE-2024-50831 1 Lopalopa 1 E-learning Management System 2024-11-18 N/A 7.2 HIGH
A SQL Injection was found in /admin/admin_user.php in kashipara E-learning Management System Project 1.0 via the username and password parameters.
CVE-2024-50830 1 Lopalopa 1 E-learning Management System 2024-11-18 N/A 7.2 HIGH
A SQL Injection vulnerability was found in /admin/calendar_of_events.php in kashipara E-learning Management System Project 1.0 via the date_start, date_end, and title parameters.
CVE-2024-50829 1 Lopalopa 1 E-learning Management System 2024-11-18 N/A 7.2 HIGH
A SQL Injection vulnerability was found in /admin/edit_subject.php in kashipara E-learning Management System Project 1.0 via the unit parameter.
CVE-2024-50828 1 Lopalopa 1 E-learning Management System 2024-11-18 N/A 7.2 HIGH
A SQL Injection vulnerability was found in /admin/edit_department.php in kashipara E-learning Management System Project 1.0 via the d parameter.
CVE-2024-50827 1 Lopalopa 1 E-learning Management System 2024-11-18 N/A 7.2 HIGH
A SQL Injection vulnerability was found in /admin/add_subject.php in kashipara E-learning Management System Project 1.0 via the subject_code parameter.

NetmanageIT Website NetmanageIT OSINT Web NetmanageIT OpenCTI NetmanageIT PDF Tools NetmanageIT CTO Corner Blog NetmanageIT Email Header Analyzer NetmanageIT Password Pusher NetmanageIT Internet Health and Latency Dashboard NetmanageIT Dedicated Speed Test Site NetmanageIT Ubuntu Mirror 10Gbps Copyright OpenCVE 2024