Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
atutor atutor vulnerabilities and exploits
(subscribe to this query)
760
VMScore
CVE-2005-3404
Multiple PHP file inclusion vulnerabilities in ATutor 1.4.1 up to and including 1.5.1-pl1 allow remote malicious users to include arbitrary files via the section parameter followed by a null byte (%00) in (1) body_header.inc.php and (2) print.php.
Adaptive Technology Resource Centre Atutor 1.4.2
Adaptive Technology Resource Centre Atutor 1.5.1
Adaptive Technology Resource Centre Atutor 1.4.1
Adaptive Technology Resource Centre Atutor 1.5.1 Pl1
Adaptive Technology Resource Centre Atutor 1.4.3
2 EDB exploits
383
VMScore
CVE-2005-3403
Multiple cross-site scripting (XSS) vulnerabilities in ATutor 1.4.1 up to and including 1.5.1-pl1 allow remote malicious users to inject arbitrary web script or HTML via (1) the _base_href parameter in translate.php, (2) the _base_path parameter in news.inc.php, and (3) the p par...
Adaptive Technology Resource Centre Atutor 1.4.2
Adaptive Technology Resource Centre Atutor 1.5.1
Adaptive Technology Resource Centre Atutor 1.4.1
Adaptive Technology Resource Centre Atutor 1.5.1 Pl1
Adaptive Technology Resource Centre Atutor 1.4.3
285
VMScore
CVE-2006-3484
Multiple cross-site scripting (XSS) vulnerabilities in ATutor prior to 1.5.3 allow remote malicious users to inject arbitrary web script or HTML via the (1) show_courses or (2) current_cat parameters to (a) admin/create_course.php, show_courses parameter to (b) users/create_cours...
Adaptive Technology Resource Centre Atutor 1.5.1
Adaptive Technology Resource Centre Atutor 1.5.3 Rc2
Adaptive Technology Resource Centre Atutor 1.5.1 Pl2
Adaptive Technology Resource Centre Atutor 1.5.1 Pl1
5 EDB exploits
475
VMScore
CVE-2005-2044
Multiple cross-site scripting (XSS) vulnerabilities in ATutor 1.4.3 and 1.5 RC 1 allow remote malicious users to inject arbitrary web script or HTML via the (1) show_course parameter to browse.php, (2) subject parameter to contact.php, (3) cid parameter to content.php, (4) l para...
Adaptive Technology Resource Centre Atutor 1.5 Rc 1
Adaptive Technology Resource Centre Atutor 1.4.3
9 EDB exploits
578
VMScore
CVE-2020-10557
An issue exists in AContent up to and including 1.4. It allows the user to run commands on the server with a low-privileged account. The upload section in the file manager page contains an arbitrary file upload vulnerability via upload.php. The extension .php7 bypasses file uploa...
Atutor Acontent
755
VMScore
CVE-2012-5167
Multiple SQL injection vulnerabilities in ATutor AContent prior to 1.2-1 allow remote malicious users to execute arbitrary SQL commands via the (1) field parameter to course_category/index_inline_editor_submit.php or (2) user/index_inline_editor_submit.php; or (3) id parameter to...
Atutor Acontent
1 EDB exploit
668
VMScore
CVE-2012-5168
ATutor AContent prior to 1.2-1 allows remote malicious users to modify arbitrary user passwords or category names via a direct request to (1) user/index_inline_editor_submit.php or (2) course_category/index_inline_editor_submit.php.
Atutor Acontent
383
VMScore
CVE-2009-4942
Cross-site request forgery (CSRF) vulnerability in ACollab 1.2 allows remote malicious users to hijack the authentication of arbitrary users for requests that add personal agenda items.
Atutor Acollab 1.2
383
VMScore
CVE-2009-4944
Multiple cross-site scripting (XSS) vulnerabilities in ATRC ACollab 1.2 allow remote malicious users to inject arbitrary web script or HTML via the (1) address parameter to profile.php or the (2) description parameter to events/add_event.php. NOTE: the provenance of this informat...
Atutor Acollab 1.2
655
VMScore
CVE-2012-5453
SQL injection vulnerability in user/index_inline_editor_submit.php in ATutor AContent 1.2-1 allows remote authenticated users to execute arbitrary SQL commands via the field parameter. NOTE: this vulnerability exists because of an incomplete fix for CVE-2012-5167.
Atutor Acontent 1.2
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27802
template injection
CVE-2024-0044
code injection
CVE-2024-35474
CVE-2024-27857
CVE-2024-23251
CVE-2024-23692
physical
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »