CVSS: 6.4EPSS: 0%CPEs: 1EXPL: 0CVE-2023-46693
https://notcve.org/view.php?id=CVE-2023-46693
07 Dec 2023 — Cross Site Scripting (XSS) vulnerability in FormaLMS before 4.0.5 allows attackers to run arbitrary code via title parameters. Vulnerabilidad de Cross Site Scripting (XSS) en FormaLMS anterior a 4.0.5 permite a los atacantes ejecutar código arbitrario a través de parámetros de título. • https://www.formalms.org/download/342-forma-lms-4-0-5.html • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 6.4EPSS: 0%CPEs: 1EXPL: 0CVE-2022-41679 – Cross-site scripting in Forma LMS version
https://notcve.org/view.php?id=CVE-2022-41679
31 Oct 2022 — Forma LMS version 3.1.0 and earlier are affected by an Cross-Site scripting vulnerability, that could allow a remote attacker to inject javascript code on the “back_url” parameter in appLms/index.php?modname=faq&op=play function. The exploitation of this vulnerability could allow an attacker to steal the user´s cookies in order to log in to the application. Forma LMS versión 3.1.0 y anteriores se ven afectados por una vulnerabilidad de Cross-Site Scripting, que podría permitir a un atacante remoto inyectar ... • https://www.incibe-cert.es/en/early-warning/security-advisories/multiple-vulnerabilities-forma-lms • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 7.6EPSS: 0%CPEs: 1EXPL: 0CVE-2022-42924 – SQL injection in Forma LMS
https://notcve.org/view.php?id=CVE-2022-42924
31 Oct 2022 — Forma LMS on its 3.1.0 version and earlier is vulnerable to a SQL injection vulnerability. The exploitation of this vulnerability could allow an authenticated attacker (with the role of student) to perform a SQL injection on the 'dyn_filter' parameter in the 'appLms/ajax.adm_server.php?r=widget/userselector/getusertabledata' function in order to dump the entire database. Forma LMS en su versión 3.1.0 y anteriores es vulnerable a una de inyección SQL. La explotación de esta vulnerabilidad podría permitir a u... • https://www.incibe-cert.es/en/early-warning/security-advisories/multiple-vulnerabilities-forma-lms • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 9.9EPSS: 0%CPEs: 1EXPL: 0CVE-2022-41681 – File Upload vulnerability in Forma LMS
https://notcve.org/view.php?id=CVE-2022-41681
31 Oct 2022 — There is a vulnerability on Forma LMS version 3.1.0 and earlier that could allow an authenticated attacker (with the role of student) to privilege escalate in order to upload a Zip file through the SCORM importer feature. The exploitation of this vulnerability could lead to a remote code injection. Existe una vulnerabilidad en Forma LMS versión 3.1.0 y anteriores que podría permitir a un atacante autenticado (con el rol de estudiante) escalar privilegios para cargar un archivo Zip a través de la función de ... • https://www.incibe-cert.es/en/early-warning/security-advisories/multiple-vulnerabilities-forma-lms • CWE-434: Unrestricted Upload of File with Dangerous Type •
CVSS: 7.6EPSS: 0%CPEs: 1EXPL: 0CVE-2022-41680 – SQL Injection in Forma LMS
https://notcve.org/view.php?id=CVE-2022-41680
31 Oct 2022 — Forma LMS on its 3.1.0 version and earlier is vulnerable to a SQL injection vulnerability. The exploitation of this vulnerability could allow an authenticated attacker (with the role of student) to perform a SQL injection on the 'search[value] parameter in the appLms/ajax.server.php?r=mycertificate/getMyCertificates' function in order to dump the entire database. Forma LMS en su versión 3.1.0 y anteriores es vulnerable a una vulnerabilidad de inyección SQL. La explotación de esta vulnerabilidad podría permi... • https://www.incibe-cert.es/en/early-warning/security-advisories/multiple-vulnerabilities-forma-lms • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 9.9EPSS: 0%CPEs: 1EXPL: 0CVE-2022-42925 – Unrestricted Upload of File with Dangerous Type in Forma LMS
https://notcve.org/view.php?id=CVE-2022-42925
31 Oct 2022 — There is a vulnerability on Forma LMS version 3.1.0 and earlier that could allow an authenticated attacker (with the role of student) to privilege escalate in order to upload a Zip file through the plugin upload component. The exploitation of this vulnerability could lead to a remote code injection. Existe una vulnerabilidad en Forma LMS versión 3.1.0 y anteriores que podría permitir a un atacante autenticado (con el rol de estudiante) escalar privilegios para cargar un archivo Zip a través del componente d... • https://www.incibe-cert.es/en/early-warning/security-advisories/multiple-vulnerabilities-forma-lms • CWE-434: Unrestricted Upload of File with Dangerous Type •
CVSS: 9.0EPSS: 0%CPEs: 1EXPL: 0CVE-2022-42923 – SQL injection in Forma LMS
https://notcve.org/view.php?id=CVE-2022-42923
31 Oct 2022 — Forma LMS on its 3.1.0 version and earlier is vulnerable to a SQL injection vulnerability. The exploitation of this vulnerability could allow an authenticated attacker (with the role of student) to perform a SQL injection on the 'id' parameter in the 'appCore/index.php?r=adm/mediagallery/delete' function in order to dump the entire database or delete all contents from the 'core_user_file' table. Forma LMS en su versión 3.1.0 y anteriores es vulnerable a una vulnerabilidad de inyección SQL. La explotación de... • https://www.incibe-cert.es/en/early-warning/security-advisories/multiple-vulnerabilities-forma-lms • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 9.8EPSS: 1%CPEs: 1EXPL: 0CVE-2022-27104
https://notcve.org/view.php?id=CVE-2022-27104
19 Apr 2022 — An Unauthenticated time-based blind SQL injection vulnerability exists in Forma LMS prior to v.1.4.3. Se presenta una vulnerabilidad de inyección SQL ciega no autenticada basada en el tiempo en Forma LMS versiones anteriores a v.1.4.3 • https://www.formalms.org/download.html • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 9.8EPSS: 47%CPEs: 1EXPL: 4CVE-2021-43136 – FormaLMS 2.4.4 - Authentication Bypass
https://notcve.org/view.php?id=CVE-2021-43136
10 Nov 2021 — An authentication bypass issue in FormaLMS <= 2.4.4 allows an attacker to bypass the authentication mechanism and obtain a valid access to the platform. Un problema de omisión de autenticación en FormaLMS versiones anteriores a 2.4.4 incluyéndola, permite a un atacante omitir el mecanismo de autenticación y obtener un acceso válido a la plataforma FormaLMS versions 2.4.4 and below suffer from an authentication bypass vulnerability. • https://packetstorm.news/files/id/164930 • CWE-798: Use of Hard-coded Credentials •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 1CVE-2020-26802
https://notcve.org/view.php?id=CVE-2020-26802
08 Oct 2020 — forma.lms 2.3.0.2 is affected by Cross Site Request Forgery (CSRF) in formalms/appCore/index.php?r=lms/profile/show&ap=saveinfo via a GET request to change the admin email address in order to accomplish an account takeover. forma.lms versión 2.3.0.2 está afectado por la falsificación de peticiones entre sitios (CSRF) en formalms/appCore/index.php?r=lms/profile/show&ap=saveinfo por medio de una petición GET para cambiar la dirección de correo electrónico del administrador a fin de lograr un toma de contr... • https://www.exploit-db.com/exploits/48494 • CWE-352: Cross-Site Request Forgery (CSRF) •