Vulnerabilities > Lopalopa > E Learning Management System

DATE CVE VULNERABILITY TITLE RISK
2024-11-14 CVE-2024-50833 SQL Injection vulnerability in Lopalopa E-Learning Management System 1.0
A SQL Injection vulnerability was found in /login.php in KASHIPARA E-learning Management System Project 1.0 via the username and password parameters.
network
low complexity
lopalopa CWE-89
critical
 9.8
9.8
2024-11-14 CVE-2024-50834 SQL Injection vulnerability in Lopalopa E-Learning Management System 1.0
A SQL Injection was found in /admin/teachers.php in KASHIPARA E-learning Management System Project 1.0 via the firstname and lastname parameters.
network
low complexity
lopalopa CWE-89
7.2
7.2
2024-11-14 CVE-2024-50835 SQL Injection vulnerability in Lopalopa E-Learning Management System 1.0
A SQL Injection vulnerability was found in /admin/edit_student.php in KASHIPARA E-learning Management System Project 1.0 via the cys, un, ln, fn, and id parameters.
network
low complexity
lopalopa CWE-89
7.2
7.2
2024-11-14 CVE-2024-50836 Cross-site Scripting vulnerability in Lopalopa E-Learning Management System 1.0
A Stored Cross-Site Scripting (XSS) vulnerability was found in /admin/teachers.php in KASHIPARA E-learning Management System Project 1.0.
network
low complexity
lopalopa CWE-79
4.8
4.8