Export CSV

Products

1 vendor
VendorProductsCVEsKEVAvg EPSSWorst Severity
15048.5%HIGH

Related CVEs

5
CVE IDDescriptionSeverityCVSSKEVEPSSPublished
CVE-2026-41588RELATE is a web-based courseware package. Prior to commit 2f68e16, there is a timing attack vulnerability in course/auth.py — check_sign_in_key(). This issue has been patched via commit 2f68e16.HIGH8.128.1%May 8, 2026
CVE-2024-32406Server-Side Template Injection (SSTI) vulnerability in inducer relate before v.2024.1 allows a remote attacker to execute arbitrary code via a crafted payload to the Batch-Issue Exam Tickets function.HIGH7.561.8%Apr 26, 2024
CVE-2024-32404Server-Side Template Injection (SSTI) vulnerability in inducer relate before v.2024.1, allows remote attackers to execute arbitrary code via a crafted payload to the Markup Sandbox feature.MEDIUM6.051.9%Apr 26, 2024
CVE-2024-32405Cross Site Scripting vulnerability in inducer relate before v.2024.1 allows a remote attacker to escalate privileges via a crafted payload to the Answer field of InlineMultiQuestion parameter on Exam function.LOW2.639.0%Apr 22, 2024
CVE-2024-32407An issue in inducer relate before v.2024.1 allows a remote attacker to execute arbitrary code via a crafted payload to the Page Sandbox feature.HIGH8.861.5%Apr 22, 2024