It may be suggested to replace the affected object with an alternative product. of open-source e-learning management platforms, which are Atutor, Moodle, Sakai. There is no information about possible countermeasures known. As the result of the economy and operability of open-source software. The MITRE ATT&CK project declares the attack technique as T1068.īy approaching the search of inurl:password_reminder.php it is possible to find vulnerable targets with Google Hacking. The current price for an exploit might be approx. There are known technical details, but no exploit is available. Get free demos and compare to similar programs. This vulnerability is traded as CVE-2021-43498 since. Review of ATutor Software: system overview, features, price and cost information. This is going to have an impact on confidentiality, integrity, and availability. The software does not restrict or incorrectly restricts access to a resource from an unauthorized actor. The manipulation of the argument g/id/h/form_password_hidden/form_change with an unknown input leads to a privilege escalation vulnerability. Affected is an unknown function of the file password_reminder.php of the component POST Parameter Handler. A high score indicates an elevated risk to be targeted for this vulnerability.Ī vulnerability was found in ATutor 2.2.4 ( Learning Management Software). The CTI Interest Score identifies the interest of attackers and the security community for this specific vulnerability in real-time. Our Cyber Threat Intelligence team is monitoring different web sites, mailing lists, exploit markets and social media networks.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |