RSS   Vulnerabilities for 'Idealms'   RSS

2022-06-21
 
CVE-2022-31786

CWE-79
 

 
IdeaLMS 2022 allows reflected Cross Site Scripting (XSS) via the IdeaLMS/Class/Assessment/ PATH_INFO.

 
2022-06-10
 
CVE-2022-31788

CWE-89
 

 
IdeaLMS 2022 allows SQL injection via the IdeaLMS/ChatRoom/ClassAccessControl/6?isBigBlueButton=0&ClassID= pathname.

 

 >>> Vendor: Ideaco 2 Products
Idealms
Ideatms


Copyright 2024, cxsecurity.com

 

Back to Top