Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.4
CVE-2021-47907
- EPSS 0.24%
- Veröffentlicht 10.05.2026 13:16:27
- Zuletzt bearbeitet 12.05.2026 14:24:15
Rocket LMS 1.1 contains a persistent cross-site scripting vulnerability in the support ticket module that allows authenticated users to inject malicious script code through the title parameter. Attackers can submit support tickets with embedded HTML/...
4.8
CVE-2024-34241
- EPSS 0.76%
- Veröffentlicht 17.05.2024 16:15:08
- Zuletzt bearbeitet 13.05.2025 02:09:03
A cross-site scripting (XSS) vulnerability in Rocketsoft Rocket LMS 1.9 allows an administrator to store a JavaScript payload using the admin web interface when creating new courses and new course notifications.
6.1
CVE-2023-3477
- EPSS 0.34%
- Veröffentlicht 30.06.2023 08:15:21
- Zuletzt bearbeitet 21.11.2024 08:17:21
A vulnerability was found in RocketSoft Rocket LMS 1.7. It has been declared as problematic. This vulnerability affects unknown code of the file /contact/store of the component Contact Form. The manipulation of the argument name/subject/message leads...
1