Vulnerabilities (CVE)

Filtered by vendor Formalms Subscribe

CVSS v3 Filter

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Search

Total 2 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2021-43136	1 Formalms	1 Formalms	2022-07-12	6.8 MEDIUM	9.8 CRITICAL
An authentication bypass issue in FormaLMS <= 2.4.4 allows an attacker to bypass the authentication mechanism and obtain a valid access to the platform.
CVE-2022-27104	1 Formalms	1 Formalms	2022-04-27	7.5 HIGH	9.8 CRITICAL
An Unauthenticated time-based blind SQL injection vulnerability exists in Forma LMS prior to v.1.4.3.