eHRD Learning Management Key Performance Indicator System
by aEnrich
CVEs (3)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2022-28741 | Hig | 0.53 | 8.1 | 0.01 | Sep 9, 2022 | aEnrich a+HRD 5.x Learning Management Key Performance Indicator System has a local file inclusion (LFI) vulnerability that occurs due to missing input validation in v5.x | ||
| CVE-2022-28742 | Hig | 0.49 | 7.5 | 0.01 | Sep 9, 2022 | aEnrich eHRD Learning Management Key Performance Indicator System 5+ has Improper Access Control. The web application does not validate user session when accessing many application pages. This can allow an attacker to gain unauthenticated access to sensitive functionalities in… | ||
| CVE-2022-28740 | Hig | 0.49 | 7.5 | 0.01 | Sep 9, 2022 | aEnrich eHRD Learning Management Key Performance Indicator System 5+ exposes Sensitive Information to an Unauthorized Actor. |
- risk 0.53cvss 8.1epss 0.01
aEnrich a+HRD 5.x Learning Management Key Performance Indicator System has a local file inclusion (LFI) vulnerability that occurs due to missing input validation in v5.x
- risk 0.49cvss 7.5epss 0.01
aEnrich eHRD Learning Management Key Performance Indicator System 5+ has Improper Access Control. The web application does not validate user session when accessing many application pages. This can allow an attacker to gain unauthenticated access to sensitive functionalities in…
- risk 0.49cvss 7.5epss 0.01
aEnrich eHRD Learning Management Key Performance Indicator System 5+ exposes Sensitive Information to an Unauthorized Actor.