Good Learning Management System
Approved changes feed: RSS · Atom
cpe:2.3:a:goodlayers:good_learning_management_system:*:*:*:*:*:wordpress:*:*
part: a version: * update: *
| Vendor | Goodlayers (28abca21-f7ab-5a0e-b8eb-5a0b2c0aabfd) |
|---|---|
| Product | Good Learning Management System (d3b05b78-e0a5-55c8-9a90-ee51ad0e2104) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | wordpress |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2020-27481 |
vulnerable | 2026-06-08 05:23:52.736041 |
Details available
An unauthenticated SQL Injection vulnerability in Good Layers LMS Plugin <= 2.1.4 exists due to the usage of "wp_ajax_nopriv" call in WordPress, which allows any unauthenticated user to get access to the function "gdlr_lms_cancel_booking" where POST Parameter "id" was sent straight into SQL query without sanitization.
Published: 2020-11-12T13:47:40.000Z
Updated: 2024-08-04T16:18:44.415Z Reference links |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.