Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
adaptive technology resource centre atutor vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2007-0381
Multiple SQL injection vulnerabilities in ATutor 1.5.3.2 allow remote malicious users to execute arbitrary SQL commands via unspecified parameters. NOTE: CVE analysis suggests that the vendor fixed these issues.
Adaptive Technology Resource Centre Atutor 1.5.3.2
7.5
CVSSv2
CVE-2006-5734
Multiple PHP remote file inclusion vulnerabilities in ATutor 1.5.3.2 allow remote malicious users to execute arbitrary PHP code via a URL in the (1) section parameter in (a) documentation/common/frame_toc.php and (b) documentation/common/search.php, the (2) req_lang parameter in ...
Adaptive Technology Resource Centre Atutor 1.5.3.2
6.5
CVSSv2
CVE-2006-3996
SQL injection vulnerability in links/index.php in ATutor 1.5.3.1 and previous versions allows remote authenticated users to execute arbitrary SQL commands via the (1) desc or (2) asc parameters.
Adaptive Technology Resource Centre Atutor
1 EDB exploit
4.3
CVSSv2
CVE-2006-3821
Multiple cross-site scripting (XSS) vulnerabilities in ATutor 1.5.3 allow remote malicious users to inject arbitrary web script or HTML via the (1) lang parameter in (a) index_list.php and (2) year, (3) month, and (4) day parameter in (b) registration.php.
Adaptive Technology Resource Centre Atutor 1.5.3
Adaptive Technology Resource Centre Atutor 1.5 Rc 1
Adaptive Technology Resource Centre Atutor 1.4.3
Adaptive Technology Resource Centre Atutor 1.5.1
Adaptive Technology Resource Centre Atutor 1.5.1 Pl1
Adaptive Technology Resource Centre Atutor 1.5.1 Pl2
Adaptive Technology Resource Centre Atutor 1.4.1
Adaptive Technology Resource Centre Atutor 1.4.2
7.5
CVSSv2
CVE-2006-3662
SQL injection vulnerability in index.php in ATutor 1.5.3 allows remote malicious users to execute arbitrary SQL commands via the fid parameter. NOTE: this issue has been disputed by the vendor, who states "The mentioned SQL injection vulnerability is not possible." Howe...
Adaptive Technology Resource Centre Atutor 1.5.3
1 EDB exploit
2.6
CVSSv2
CVE-2006-3484
Multiple cross-site scripting (XSS) vulnerabilities in ATutor prior to 1.5.3 allow remote malicious users to inject arbitrary web script or HTML via the (1) show_courses or (2) current_cat parameters to (a) admin/create_course.php, show_courses parameter to (b) users/create_cours...
Adaptive Technology Resource Centre Atutor 1.5.1
Adaptive Technology Resource Centre Atutor 1.5.1 Pl1
Adaptive Technology Resource Centre Atutor 1.5.1 Pl2
Adaptive Technology Resource Centre Atutor 1.5.3 Rc2
5 EDB exploits
7.5
CVSSv2
CVE-2005-4155
registration.PHP in ATutor 1.5.1 pl2 allows remote malicious users to execute arbitrary SQL commands via an e-mail address that ends in a NULL character, which bypasses the PHP regular expression check. NOTE: it is possible that this is actually a bug in PHP code, in which case t...
Adaptive Technology Resource Centre Atutor 1.5.1 Pl2
1 EDB exploit
7.5
CVSSv2
CVE-2005-3404
Multiple PHP file inclusion vulnerabilities in ATutor 1.4.1 up to and including 1.5.1-pl1 allow remote malicious users to include arbitrary files via the section parameter followed by a null byte (%00) in (1) body_header.inc.php and (2) print.php.
Adaptive Technology Resource Centre Atutor 1.4.1
Adaptive Technology Resource Centre Atutor 1.5.1 Pl1
Adaptive Technology Resource Centre Atutor 1.4.3
Adaptive Technology Resource Centre Atutor 1.5.1
Adaptive Technology Resource Centre Atutor 1.4.2
2 EDB exploits
4.3
CVSSv2
CVE-2005-3403
Multiple cross-site scripting (XSS) vulnerabilities in ATutor 1.4.1 up to and including 1.5.1-pl1 allow remote malicious users to inject arbitrary web script or HTML via (1) the _base_href parameter in translate.php, (2) the _base_path parameter in news.inc.php, and (3) the p par...
Adaptive Technology Resource Centre Atutor 1.4.2
Adaptive Technology Resource Centre Atutor 1.4.3
Adaptive Technology Resource Centre Atutor 1.4.1
Adaptive Technology Resource Centre Atutor 1.5.1
Adaptive Technology Resource Centre Atutor 1.5.1 Pl1
7.5
CVSSv2
CVE-2005-2954
SQL injection vulnerability in password_reminder.php in ATutor prior to 1.5.1 pl1 allows remote malicious users to execute arbitrary SQL commands via the email field.
Adaptive Technology Resource Centre Atutor 1.5.1
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5248
CVE-2024-3110
CVE-2024-5552
CVE-2024-29415
HTML injection
CVE-2024-3095
TCP
type confusion
CVE-2024-1800
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »