VYPR

Learning Ecosystem

by Wisetail

CVEs (2)

  • CVE-2018-16971MedSep 12, 2018
    risk 0.28cvss 4.3epss 0.01

    Wisetail Learning Ecosystem (LE) through v4.11.6 allows insecure direct object reference (IDOR) attacks to access non-purchased course contents (quiz / test) via a modified id parameter.

  • CVE-2018-16970MedSep 12, 2018
    risk 0.28cvss 4.3epss 0.01

    Wisetail Learning Ecosystem (LE) through v4.11.6 allows insecure direct object reference (IDOR) attacks to download non-purchased course files via a modified id parameter.