Search Results | AttackerKB

Show filters

Clear All

Disclosure Year Disclosure Month

Collection Command and Control Credential Access Defense Evasion Discovery Execution Exfiltration Impact Initial Access Lateral Movement Persistence Privilege Escalation

2 Total Results

Displaying 1-2 of 2

Attacker Value

Unknown

CVE-2022-31786

Disclosure Date: June 21, 2022 (last updated February 23, 2025)

IdeaLMS 2022 allows reflected Cross Site Scripting (XSS) via the IdeaLMS/Class/Assessment/ PATH_INFO.

Attacker Value

Unknown

CVE-2022-31788

Disclosure Date: June 10, 2022 (last updated February 23, 2025)

IdeaLMS 2022 allows SQL injection via the IdeaLMS/ChatRoom/ClassAccessControl/6?isBigBlueButton=0&ClassID= pathname.

Attack Vector: Network Privileges: None User Interaction: None

2 Total Results

Displaying 1-2 of 2

Unknown

CVE-2022-31786

Unknown

CVE-2022-31788

Quick Cookie Notification