Xinheinformation Xinhe Teaching Platform System — known CVE vulnerabilities
Every CVE whose affected-product data names Xinheinformation Xinhe Teaching Platform System, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
CVE-2021-42330 — CVSS 8.8 (high): The “Teacher Edit” function of ShinHer StudyOnline System does not perform authority control. After logging in with user’s privilege…
CVE-2021-42329 — CVSS 5.4 (medium): The “List_Add” function of message board of ShinHer StudyOnline System does not filter special characters in the title parameter. After…
CVE-2021-42331 — CVSS 5.4 (medium): The “Study Edit” function of ShinHer StudyOnline System does not perform permission control. After logging in with user’s privilege…
CVE-2021-42332 — CVSS 4.3 (medium): The “List View” function of ShinHer StudyOnline System is not under authority control. After logging in with user’s privilege, remote…