Show filters
2 Total Results
Displaying 1-2 of 2
Sort by:
Attacker Value
Unknown

CVE-2018-16970

Disclosure Date: September 12, 2018 (last updated November 27, 2024)
Wisetail Learning Ecosystem (LE) through v4.11.6 allows insecure direct object reference (IDOR) attacks to download non-purchased course files via a modified id parameter.
0
0
Attacker Value
Unknown

CVE-2018-16971

Disclosure Date: September 12, 2018 (last updated November 27, 2024)
Wisetail Learning Ecosystem (LE) through v4.11.6 allows insecure direct object reference (IDOR) attacks to access non-purchased course contents (quiz / test) via a modified id parameter.
0
0