Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
efrontlearning efront 3.6.11 vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2012-6515
eFront 3.6.10, 3.6.11 build 15059, and previous versions allows remote malicious users to obtain sensitive information via invalid courses_ID parameter in the lesson_info module to index.php, which reveals the installation path in an error message.
Efrontlearning Efront 3.6.11
Efrontlearning Efront 3.6.10
6
CVSSv2
CVE-2012-4269
Unrestricted file upload vulnerability in eFront 3.6.11 allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension via an attachment in a message.
Efrontlearning Efront 3.6.11
3.5
CVSSv2
CVE-2012-4270
Cross-site scripting (XSS) vulnerability in eFront 3.6.11 allows remote authenticated users to inject arbitrary web script or HTML via the subject box of a message.
Efrontlearning Efront 3.6.11
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073
CVE-2024-5496
CVE-2024-5495
XPath injection
bypass
CVE-2024-30043
CVE-2024-24919
denial of service
CVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started