Preprojects: >> Pre E-Learning Portal Security Vulnerabilities
SQL injection vulnerability in search_result.asp in Pre Projects Pre E-Learning Portal allows remote attackers to execute arbitrary SQL commands via the course_ID parameter.
CVSS Score
7.5
EPSS Score
0.008
Published
2010-03-10
PreProjects Pre E-Learning Portal stores db_elearning.mdb under the web root with insufficient access control, which allows remote attackers to obtain passwords via a direct request.
CVSS Score
5.0
EPSS Score
0.003
Published
2009-02-04