Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cnvdChina National Vulnerability DatabaseCNVD-2021-100287
HistoryDec 14, 2021 - 12:00 a.m.

OpenOlat has unspecified vulnerabilities

2021-12-1400:00:00
China National Vulnerability Database
www.cnvd.org.cn
7
openolat
e-learning
vulnerability
security
lms
rest methods
directory structure

EPSS

0.003

Percentile

68.4%

JSON

OpenOLAT is a web-based e-learning platform for teaching, learning, assessing and communicating with an LMS, a learning management system. a security vulnerability exists in versions of OpenOlat prior to 15.5.12 and 16.0.5, which stems from the fact that by providing a file name containing a relative path as a parameter in certain REST methods, it is possible to create a directory structure and write to a file anywhere on the target system. directory structure and write files to any location on the target system. No details of the vulnerability are currently available.

Related

cve 1
cvelist 1
nvd 1
osv 1
prion 1
cve
cve
CVE-2021-41242
2021-12-10 23:15:09
cvelist
cvelist
CVE-2021-41242 Path Traversal in some REST methods leading to file upload to arbitrary places
2021-12-10 22:25:13
nvd
nvd
CVE-2021-41242
2021-12-10 23:15:09
osv
osv
CVE-2021-41242
2021-12-10 23:15:09
prion
prion
Path traversal
2021-12-10 23:15:00

EPSS

0.003

Percentile

68.4%

JSON
Related for CNVD-2021-100287
cve1cvelist1nvd1osv1prion1