Home/Product/lopalopa e learning management system
Product

lopalopa e learning management system

41 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
CVE-2024-54938
all versions
A Directory Listing issue was found in Kashipara E-Learning Management System v1.0, which allows remote attackers to access sensit
7.5HIGH
 CVE-2024-54934
all versions
Kashipara E-learning Management System v1.0 is vulnerable to SQL Injection in /admin/delete_class.php.
9.8CRITICAL
 CVE-2024-54932
all versions
Kashipara E-learning Management System v1.0 is vulnerable to SQL Injection in /admin/delete_department.php.
9.8CRITICAL
 CVE-2024-54931
all versions
A SQL Injection was found in /admin/delete_event.php in kashipara E-learning Management System v1.0, which allows remote attackers
9.8CRITICAL
 CVE-2024-54928
all versions
kashipara E-learning Management System v1.0 is vulnerable to SQL Injection in /admin/delete_teacher.php,
7.2HIGH
 CVE-2024-54927
all versions
Kashipara E-learning Management System v1.0 is vulnerable to SQL Injection in /admin/delete_users.php.
7.2HIGH
 CVE-2024-54925
all versions
A SQL Injection was found in /remove_sent_message.php in kashipara E-learning Management System v1.0, which allows remote attacker
9.8CRITICAL
 CVE-2024-54924
all versions
A SQL Injection was found in /admin/edit_content.php in kashipara E-learning Management System v1.0, which allows remote attackers
9.8CRITICAL
 CVE-2024-54923
all versions
A SQL Injection vulnerability was found in /admin/edit_teacher.php in kashipara E-learning Management System v1.0, which allows re
9.8CRITICAL
 CVE-2024-54921
all versions
A SQL Injection was found in /student_signup.php in kashipara E-learning Management System v1.0, which allows remote attackers to
9.8CRITICAL
 CVE-2024-54918
all versions
Kashipara E-learning Management System v1.0 is vulnerable to Remote Code Execution via File Upload in /teacher_avatar.php.
9.8CRITICAL
 CVE-2024-54935
all versions
A Stored Cross-Site Scripting (XSS) vulnerability was found in /send_message_teacher_to_student.php of kashipara E-learning Manage
5.4MEDIUM
 CVE-2024-54933
all versions
Kashipara E-learning Management System v1.0 is vulnerable to SQL Injection in /admin/delete_content.php.
7.2HIGH
 CVE-2024-54930
all versions
Kashipara E-learning Management System v1.0 is vulnerable to SQL Injection in /admin/delete_student.php.
7.2HIGH
 CVE-2024-54922
all versions
A SQL Injection was found in /admin/edit_user.php of kashipara E-learning Management System v1.0, which allows remote attackers to
7.2HIGH
 CVE-2024-54926
all versions
A SQL Injection vulnerability was found in /search_class.php of kashipara E-learning Management System v1.0, which allows remote a
8.8HIGH
 CVE-2024-54920
all versions
A SQL Injection vulnerability was found in /teacher_signup.php of kashipara E-learning Management System v1.0, which allows remote
9.8CRITICAL
 CVE-2024-54919
all versions
A Stored Cross Site Scripting (XSS ) was found in /teacher_avatar.php of kashipara E-learning Management System v1.0. This vulnera
5.4MEDIUM
 CVE-2024-54937
all versions
A Directory Listing issue was found in Kashipara E-Learning Management System v1.0, which allows remote attackers to access sensit
5.3MEDIUM
 CVE-2024-54936
all versions
A Stored Cross-Site Scripting (XSS) vulnerability was found in /send_message.php of Kashipara E-learning Management System v1.0. T
5.4MEDIUM
 CVE-2024-54929
all versions
KASHIPARA E-learning Management System v1.0 is vulnerable to SQL Injection in /admin/delete_subject.php.
7.2HIGH
 CVE-2024-50831
all versions
A SQL Injection was found in /admin/admin_user.php in kashipara E-learning Management System Project 1.0 via the username and pass
7.2HIGH
 CVE-2024-50830
all versions
A SQL Injection vulnerability was found in /admin/calendar_of_events.php in kashipara E-learning Management System Project 1.0 via
7.2HIGH
 CVE-2024-50829
all versions
A SQL Injection vulnerability was found in /admin/edit_subject.php in kashipara E-learning Management System Project 1.0 via the u
7.2HIGH
 CVE-2024-50828
all versions
A SQL Injection vulnerability was found in /admin/edit_department.php in kashipara E-learning Management System Project 1.0 via th
7.2HIGH
 CVE-2024-50827
all versions
A SQL Injection vulnerability was found in /admin/add_subject.php in kashipara E-learning Management System Project 1.0 via the su
7.2HIGH
 CVE-2024-50826
all versions
A SQL Injection vulnerability was found in /admin/add_content.php in kashipara E-learning Management System Project 1.0 via the ti
7.2HIGH
 CVE-2024-50825
all versions
A SQL Injection vulnerability was found in /admin/school_year.php in kashipara E-learning Management System Project 1.0 via the sc
7.2HIGH
 CVE-2024-50824
all versions
A SQL Injection vulnerability was found in /admin/class.php in kashipara E-learning Management System Project 1.0 via the class_na
7.2HIGH
 CVE-2024-50823
all versions
A SQL Injection vulnerability was found in /admin/login.php in kashipara E-learning Management System Project 1.0 via the username
9.8CRITICAL
 CVE-2024-50836
all versions
A Stored Cross-Site Scripting (XSS) vulnerability was found in /admin/teachers.php in KASHIPARA E-learning Management System Proje
4.8MEDIUM
 CVE-2024-50835
all versions
A SQL Injection vulnerability was found in /admin/edit_student.php in KASHIPARA E-learning Management System Project 1.0 via the c
7.2HIGH
 CVE-2024-50834
all versions
A SQL Injection was found in /admin/teachers.php in KASHIPARA E-learning Management System Project 1.0 via the firstname and lastn
7.2HIGH
 CVE-2024-50833
all versions
A SQL Injection vulnerability was found in /login.php in KASHIPARA E-learning Management System Project 1.0 via the username and p
9.8CRITICAL
 CVE-2024-50832
all versions
A SQL Injection vulnerability was found in /admin/edit_class.php in kashipara E-learning Management System Project 1.0 via the cla
7.2HIGH
 CVE-2024-50838
all versions
A Stored Cross-Site Scripting (XSS) vulnerability was found in /admin/department.php in KASHIPARA E-learning Management System Pro
5.4MEDIUM
 CVE-2024-50837
all versions
A Stored Cross-Site Scripting (XSS) vulnerability was found in /admin/admin_user.php in KASHIPARA E-learning Management System Pro
5.4MEDIUM
 CVE-2024-50842
all versions
A Stored Cross-Site Scripting (XSS) vulnerability was found in /admin/school_year.php in KASHIPARA E-learning Management System Pr
5.4MEDIUM
 CVE-2024-50841
all versions
A Stored Cross-Site Scripting (XSS) vulnerability was found in /admin/calendar_of_events.php in KASHIPARA E-learning Management Sy
5.4MEDIUM
 CVE-2024-50840
all versions
A Stored Cross-Site Scripting (XSS) vulnerability was found in /admin/class.php in KASHIPARA E-learning Management System Project
5.4MEDIUM
 CVE-2024-50839
all versions
A Stored Cross-Site Scripting (XSS) vulnerability was found in /admin/add_subject.php in KASHIPARA E-learning Management System Pr
5.4MEDIUM
SOC and Response
CVE triage
Stack monitoring
Am I affected
IOC triage
KEV catalog
Daily brief
Change tracking
Detection Engineering
Coverage workspace
Detection coverage
Coverage check
Telemetry ceiling
SIEM query builder
Sigma rules
SIEM rules
YARA rules
Network rules
D3FEND
Threat Hunting
Threat actors
ATT&CK techniques
Attack paths
Indicators
Atomic tests
Red Team and Pentest
Exploitability triage
Recon pack
Attack paths
CAPEC patterns
Adversary emulation
Compliance and GRC
Framework mapping
Control assessment
Audit view
Coverage report
Atlas Search Threat actors Techniques Tools & malware CWE CAPEC KEV catalog Package vulns TAXII feed Data sources
About All capabilities Pricing API docs Live status Privacy policy Terms of service
threatengine.sh