Academy Lms vulnerabilities
2 known vulnerabilities affecting academy/lms.
Total CVEs
2
CISA KEV
0
Public exploits
2
Exploited in wild
0
Severity breakdown
CRITICAL1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2023-4974P2CRITICALCVSS 9.8PoCv6.22023-09-15
CVE-2023-4974 [CRITICAL] CWE-89 CVE-2023-4974: A vulnerability was found in Academy LMS 6.2. It has been rated as critical. Affected by this issue
A vulnerability was found in Academy LMS 6.2. It has been rated as critical. Affected by this issue is some unknown functionality of the file /academy/tutor/filter of the component GET Parameter Handler. The manipulation of the argument price_min/price_max leads to sql injection. The attack may be launched remotely. VDB-239750 is the identifier assign
nvd
CVE-2023-4973P3MEDIUMCVSS 6.1PoCv6.22023-09-15
CVE-2023-4973 [MEDIUM] CWE-79 CVE-2023-4973: A vulnerability was found in Academy LMS 6.2 on Windows. It has been declared as problematic. Affect
A vulnerability was found in Academy LMS 6.2 on Windows. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /academy/tutor/filter of the component GET Parameter Handler. The manipulation of the argument searched_word/searched_tution_class_type[]/searched_price_type[]/searched_duration[] leads to
nvd