Academy Security Vulnerabilities
A vulnerability was found in Academy LMS 6.2. It has been rated as critical. Affected by this issue is some unknown functionality of the file /academy/tutor/filter of the component GET Parameter Handler. The manipulation of the argument price_min/price_max leads to sql injection. The attack may be....
9.8CVSS
9.5AI Score
0.022EPSS
A vulnerability was found in Academy LMS 6.2 on Windows. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /academy/tutor/filter of the component GET Parameter Handler. The manipulation of the argument...
6.1CVSS
6AI Score
0.002EPSS
A vulnerability has been found in Academy LMS 6.0 and classified as problematic. This vulnerability affects unknown code of the file /academy/home/courses. The manipulation of the argument query/sort_by leads to cross site scripting. The attack can be initiated remotely. VDB-235966 is the...
6.1CVSS
6AI Score
0.001EPSS
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Academy LMS academy.This issue affects Academy LMS: from n/a through...
5.3CVSS
7.1AI Score
0.0004EPSS
Missing Authorization vulnerability in Academy LMS.This issue affects Academy LMS: from n/a through...
7.1CVSS
7.4AI Score
0.0004EPSS
Due to a failure in validating the number of scanline samples of a OpenEXR file containing deep scanline data, Academy Software Foundation OpenEX image parsing library version 3.2.1 and prior is susceptible to a heap-based buffer overflow vulnerability. This issue was resolved as of...
9.1CVSS
9.2AI Score
0.001EPSS