Dokeos CVE - OpenCVE

Filtered by vendor Dokeos Subscribe

Total 24 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2006-2284	2 Claroline, Dokeos	2 Claroline, Dokeos	2025-04-03	6.8 MEDIUM	N/A
Multiple PHP remote file inclusion vulnerabilities in Claroline 1.7.5 allow remote attackers to execute arbitrary PHP code via a URL in the (1) clarolineRepositorySys parameter in ldap.inc.php and the (2) claro_CasLibPath parameter in casProcess.inc.php.
CVE-2006-3924	1 Dokeos	1 Dokeos	2025-04-03	4.3 MEDIUM	N/A
Multiple cross-site scripting (XSS) vulnerabilities in Dokeos before 1.6.5 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.
CVE-2006-2286	1 Dokeos	2 Dokeos, Dokeos Community Release	2025-04-03	6.8 MEDIUM	N/A
Multiple PHP remote file inclusion vulnerabilities in claro_init_global.inc.php in Dokeos 1.6.3 and earlier, and Dokeos community release 2.0.3, allow remote attackers to execute arbitrary PHP code via a URL in the (1) rootSys and (2) clarolineRepositorySys parameters, and possibly the (3) lang_path, (4) extAuthSource, (5) thisAuthSource, (6) main_configuration_file_path, (7) phpDigIncCn, and (8) drs parameters to (a) testheaderpage.php and (b) resourcelinker.inc.php.
CVE-2012-5776	1 Dokeos	1 Dokeos	2024-11-21	3.5 LOW	5.4 MEDIUM
Dokeos 2.1.1 has multiple XSS issues involving "extra_" parameters in main/auth/profile.php.

Vulnerabilities (CVE)