RSS   Vulnerabilities for 'Elearning server'   RSS

2012-05-21
 
CVE-2012-2924

CWE-94
 

 
PHP remote file inclusion vulnerability in admin/setup.inc.php in Hypermethod eLearning Server 4G allows remote attackers to execute arbitrary PHP code via a URL in the path parameter.

 
 
CVE-2012-2923

CWE-89
 

 
SQL injection vulnerability in news.php4 in Hypermethod eLearning Server 4G allows remote attackers to execute arbitrary SQL commands via the nid parameter.

 


Copyright 2024, cxsecurity.com

 

Back to Top