📦 Academy Lms
by Creativeitem
🔍 What is Academy Lms?
Description coming soon...
🛡️ Security Overview
Click on a severity to filter vulnerabilities
⚠️ Known Vulnerabilities
This vulnerability allows attackers to forge valid JWT authentication tokens using a predictable hardcoded secret, enabling complete authentication bypass. Any Creativeitem Academy LMS installation up...
This CSRF vulnerability in Academy LMS allows attackers to add unauthorized administrator accounts by tricking authenticated administrators into clicking malicious links. All Academy LMS instances run...
Academy LMS 6.1 contains a file upload vulnerability that allows authenticated users to upload malicious SVG files containing stored cross-site scripting (XSS) payloads. Attackers can inject malicious...
This vulnerability in Creativeitem Academy LMS allows attackers to brute-force password reset tokens due to predictable token generation and lack of rate limiting. Attackers can compromise user accoun...
Creativeitem Academy LMS versions up to 5.13 contain a privilege escalation vulnerability where authenticated users can access instructor-only functions without proper role validation. This allows una...