Every CVE whose affected-product data names Markusproject Markus, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (8)
CVE-2026-25057 — CVSS 9.1 (critical): MarkUs is a web application for the submission and grading of student assignments. Prior to 2.9.1, instructors are able to upload a zip…
CVE-2024-51499 — CVSS 8.8 (high): MarkUs is a web application for the submission and grading of student assignments. In versions prior to 2.4.8, an arbitrary file write…
CVE-2024-51743 — CVSS 8.8 (high): MarkUs is a web application for the submission and grading of student assignments. In versions prior to 2.4.8, an arbitrary file write…
CVE-2026-28405 — CVSS 8.0 (high): MarkUs is a web application for the submission and grading of student assignments. Prior to version 2.9.1, the courses/<:course_id>/assignme…
CVE-2026-24900 — CVSS 6.5 (medium): MarkUs is a web application for the submission and grading of student assignments. Prior to 2.9.1, the courses/<:course_id>/assignments/<:as…
CVE-2026-25962 — CVSS 6.5 (medium): MarkUs is a web application for the submission and grading of student assignments. Prior to version 2.9.4, MarkUs currently extracts zip…
CVE-2024-47820 — CVSS 5.7 (medium): MarkUs, a web application for the submission and grading of student assignments, is vulnerable to path traversal in versions prior to…
CVE-2026-27807 — CVSS 4.9 (medium): MarkUs is a web application for the submission and grading of student assignments. Prior to version 2.9.4, MarkUs allows course instructors…