CVE-2025-64195
- EPSS 0.22%
- Veröffentlicht 29.10.2025 08:38:04
- Zuletzt bearbeitet 20.01.2026 15:18:41
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in ThimPress Eduma eduma allows PHP Local File Inclusion.This issue affects Eduma: from n/a through <= 5.7.6.
CVE-2025-64194
- EPSS 0.06%
- Veröffentlicht 29.10.2025 08:38:03
- Zuletzt bearbeitet 20.01.2026 15:18:41
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in ThimPress Eduma eduma allows Stored XSS.This issue affects Eduma: from n/a through <= 5.7.6.
CVE-2025-39460
- EPSS 0.06%
- Veröffentlicht 19.05.2025 17:30:44
- Zuletzt bearbeitet 21.05.2025 20:25:16
Missing Authorization vulnerability in ThimPress Eduma allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Eduma: from n/a through 5.6.4.
CVE-2024-35697
- EPSS 0.15%
- Veröffentlicht 08.06.2024 15:15:52
- Zuletzt bearbeitet 21.11.2024 09:20:41
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in ThimPress Eduma allows Reflected XSS.This issue affects Eduma: from n/a through 5.4.7.