Vendor

Campus Virtual LMS

Products

CVEs

Across products

Status

Private

Products

CVE	Vendor / Product	Sev	Risk	CVSS	EPSS	KEV	Published	Description
CVE-2009-2150	Campus Virtual LMS Campus Virtual-LMS		0.03	—	0.01		Jun 22, 2009	Multiple cross-site request forgery (CSRF) vulnerabilities in Campus Virtual-LMS allow (1) remote attackers to hijack the authentication of arbitrary users for requests that terminate a session via login/logout.php, and might allow remote attackers to hijack the authentication…
CVE-2009-2149	Campus Virtual LMS Campus Virtual-LMS		0.03	—	0.01		Jun 22, 2009	Multiple cross-site scripting (XSS) vulnerabilities in Campus Virtual-LMS allow remote attackers to inject arbitrary web script or HTML via the (1) courseid parameter to enrolments/step1.php, or the (2) search or (3) siteid parameter to files/shared_list.php.

CVE-2009-2150Jun 22, 2009
Campus Virtual LMS
Campus Virtual-LMS
risk 0.03cvss —epss 0.01
Multiple cross-site request forgery (CSRF) vulnerabilities in Campus Virtual-LMS allow (1) remote attackers to hijack the authentication of arbitrary users for requests that terminate a session via login/logout.php, and might allow remote attackers to hijack the authentication…
CVE-2009-2149Jun 22, 2009
Campus Virtual LMS
Campus Virtual-LMS
risk 0.03cvss —epss 0.01
Multiple cross-site scripting (XSS) vulnerabilities in Campus Virtual-LMS allow remote attackers to inject arbitrary web script or HTML via the (1) courseid parameter to enrolments/step1.php, or the (2) search or (3) siteid parameter to files/shared_list.php.