E-learning management system
This hub aggregates every CVE we track for E-learning management system, a product in the enterprise software space. Use it to gauge the current risk picture and drill into individual advisories.
41
CVEs tracked
11
Critical
19
High
0
In CISA KEV
Severity distribution
HIGH19MEDIUM11CRITICAL11
Monthly trend
0
0
0
0
20
21
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
2024-072026-06
Latest CVEs
The 15 most recently published vulnerabilities affecting E-learning management system.
- CVE-2024-54935A Stored Cross-Site Scripting (XSS) vulnerability was found in /send_message_teacher_to_student.php of kashipara E-learning Management System v1.0. This vulnerability allows remote attackers to exe...5.4
- CVE-2024-54921A SQL Injection was found in /student_signup.php in kashipara E-learning Management System v1.0, which allows remote attackers to execute arbitrary SQL commands to get unauthorized database access ...9.8
- CVE-2024-54929KASHIPARA E-learning Management System v1.0 is vulnerable to SQL Injection in /admin/delete_subject.php.7.2
- CVE-2024-54933Kashipara E-learning Management System v1.0 is vulnerable to SQL Injection in /admin/delete_content.php.7.2
- CVE-2024-54926A SQL Injection vulnerability was found in /search_class.php of kashipara E-learning Management System v1.0, which allows remote attackers to execute arbitrary SQL commands to get unauthorized data...8.8
- CVE-2024-54934Kashipara E-learning Management System v1.0 is vulnerable to SQL Injection in /admin/delete_class.php.9.8
- CVE-2024-54936A Stored Cross-Site Scripting (XSS) vulnerability was found in /send_message.php of Kashipara E-learning Management System v1.0. This vulnerability allows remote attackers to execute arbitrary scri...5.4
- CVE-2024-54918Kashipara E-learning Management System v1.0 is vulnerable to Remote Code Execution via File Upload in /teacher_avatar.php.9.8
- CVE-2024-54937A Directory Listing issue was found in Kashipara E-Learning Management System v1.0, which allows remote attackers to access sensitive files and directories via /admin/assets.5.3
- CVE-2024-54927Kashipara E-learning Management System v1.0 is vulnerable to SQL Injection in /admin/delete_users.php.7.2
- CVE-2024-54931A SQL Injection was found in /admin/delete_event.php in kashipara E-learning Management System v1.0, which allows remote attackers to execute arbitrary SQL commands to get unauthorized database acc...9.8
- CVE-2024-54928kashipara E-learning Management System v1.0 is vulnerable to SQL Injection in /admin/delete_teacher.php,7.2
- CVE-2024-54919A Stored Cross Site Scripting (XSS ) was found in /teacher_avatar.php of kashipara E-learning Management System v1.0. This vulnerability allows remote attackers to execute arbitrary java script via...5.4
- CVE-2024-54932Kashipara E-learning Management System v1.0 is vulnerable to SQL Injection in /admin/delete_department.php.9.8
- CVE-2024-54923A SQL Injection vulnerability was found in /admin/edit_teacher.php in kashipara E-learning Management System v1.0, which allows remote attackers to execute arbitrary SQL commands to get unauthorize...9.8
Product normalization is registry-driven with AI assist and human review. How it works