CNNVD-202512-2641 Information

CNNVD ID

CNNVD-202512-2641

Related CVE

CVE-2023-53876

• CNNVD Published: 2025-12-15

Description (Chinese)

Kodezen Academy LMS是美国Kodezen公司的一个学习管理系统。 Kodezen Academy LMS 6.1版本存在安全漏洞，该漏洞源于存在文件上传漏洞，可能导致上传恶意SVG文件并执行存储型跨站脚本。

Description (English)

Kodezen Academy LMS is a learning management system for Kodezen in the United States. There is a security loophole in the Kodezen Academy LMS 6.1 version, which stems from a file upload loophole that could lead to the uploading of malicious SVG files and the implementation of storage-type cross-site scripts.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Kodezen

Published

2025-12-15

Last Modified

2026-02-24

References

https://www.exploit-db.com/exploits/51702 https://academylms.net/ https://www.vulncheck.com/advisories/academy-lms-arbitrary-file-upload-vulnerability-via-profile-settings https://access.redhat.com/security/cve/cve-2023-53876