Vulnerabilities > Lopalopa > E Learning Management System > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-12-09 | CVE-2024-54935 | Cross-site Scripting vulnerability in Lopalopa E-Learning Management System 1.0 A Stored Cross-Site Scripting (XSS) vulnerability was found in /send_message_teacher_to_student.php of kashipara E-learning Management System v1.0. | 5.4 |
| 2024-12-09 | CVE-2024-54919 | Cross-site Scripting vulnerability in Lopalopa E-Learning Management System 1.0 A Stored Cross Site Scripting (XSS ) was found in /teacher_avatar.php of kashipara E-learning Management System v1.0. | 5.4 |
| 2024-12-09 | CVE-2024-54936 | Cross-site Scripting vulnerability in Lopalopa E-Learning Management System 1.0 A Stored Cross-Site Scripting (XSS) vulnerability was found in /send_message.php of Kashipara E-learning Management System v1.0. | 5.4 |
| 2024-12-09 | CVE-2024-54937 | Unspecified vulnerability in Lopalopa E-Learning Management System 1.0 A Directory Listing issue was found in Kashipara E-Learning Management System v1.0, which allows remote attackers to access sensitive files and directories via /admin/assets. | 5.3 |
| 2024-11-14 | CVE-2024-50836 | Cross-site Scripting vulnerability in Lopalopa E-Learning Management System 1.0 A Stored Cross-Site Scripting (XSS) vulnerability was found in /admin/teachers.php in KASHIPARA E-learning Management System Project 1.0. | 4.8 |