CVE-2015-6253

edx-platform before 2015-08-17 allows XSS in the Studio listing of courses.

View Full Alert

Related Posts

  • CVE-2015-3907

    CodeIgniter Rest Server (aka codeigniter-restserver) 2.7.1 allows XXE attacks. View Full Alert

  • CVE-2015-5601

    edx-platform before 2015-07-20 allows code execution by privileged users because the course import endpoint mishandles .tar.gz files. View Full Alert

  • CVE-2015-7882

    Improper handling of LDAP authentication in MongoDB Server versions 3.0.0 to 3.0.6 allows an unauthenticated client to gain unauthorized access. View Full Alert