Vulnerabilities > Dokeos > Open Source Learning AND Knowledge Management Tool > High

DATE	CVE	VULNERABILITY TITLE	RISK
2008-03-10	CVE-2008-1223	Remote Code Execution and Cross-Site Scripting vulnerability in Dokeos Open Source Learning and Knowledge Management Tool 1.8.4 Unspecified vulnerability in Dokeos 1.8.4 before SP3 allows attackers to execute arbitrary code via unspecified vectors. network low complexity dokeos	7.5
2007-05-30	CVE-2007-2889	SQL Injection vulnerability in Dokeos CourseLog.PHP SQL injection vulnerability in tracking/courseLog.php in Dokeos 1.6.5 and earlier allows remote attackers to execute arbitrary SQL commands via the scormcontopen parameter. network low complexity dokeos	7.5

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.