Approved changes feed: RSS · Atom
cpe:2.3:a:adaptive_technology_resource_centre:atutor:1.5.3:*:*:*:*:*:*:*
part: a version: 1.5.3 update: *
| Vendor | Adaptive Technology Resource Centre (94088f96-8c62-59c6-b301-d7adf85e636d) |
|---|---|
| Product | Atutor (62bb5133-b69b-5c5f-b1d7-624741f12365) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from purl2cpe mapping |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
pkg:github/atutor/atutor_opencaps |
purl2cpe | 2026-06-01 10:17:55.514512 |
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2006-3821 |
vulnerable | 2026-06-03 14:27:36.012007 |
Details available
Multiple cross-site scripting (XSS) vulnerabilities in ATutor 1.5.3 allow remote attackers to inject arbitrary web script or HTML via the (1) lang parameter in (a) index_list.php and (2) year, (3) month, and (4) day parameter in (b) registration.php.
Published: 2006-07-25T00:00:00.000Z
Updated: 2024-08-07T18:48:39.219Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2006-3662 |
vulnerable | 2026-06-03 14:27:35.618019 |
Details available
SQL injection vulnerability in index.php in ATutor 1.5.3 allows remote attackers to execute arbitrary SQL commands via the fid parameter. NOTE: this issue has been disputed by the vendor, who states "The mentioned SQL injection vulnerability is not possible." However, the relevant source code suggests that this issue may be legitimate, and the parameter is cleansed in 1.5.3.1
Published: 2006-07-17T21:00:00.000Z
Updated: 2024-08-07T18:39:53.650Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.