Gunet Openeclass

15 CVEs affecting Gunet Openeclass. Latest disclosed: 2026-02-03. Critical: 1, High: 5.

Top CVEs affecting Gunet Openeclass
CVESeverityScorePublishedSummary
CVE-2024-38530Critical9.82024-08-12The Open eClass platform (formerly known as GUnet eClass) is a complete Course Management System. An arbitrary file upload vulnerability in the "save" function…
CVE-2026-24665High8.72026-02-03The Open eClass platform (formerly known as GUnet eClass) is a complete course management system. Prior to version 4.2, a stored Cross-Site Scripting (XSS) vul…
CVE-2026-24669High7.82026-02-03The Open eClass platform (formerly known as GUnet eClass) is a complete course management system. Prior to version 4.2, an insecure password reset mechanism al…
CVE-2026-24773High7.52026-02-03The Open eClass platform (formerly known as GUnet eClass) is a complete course management system. Prior to version 4.2, an Insecure Direct Object Reference (ID…
CVE-2026-24672High7.32026-02-03The Open eClass platform (formerly known as GUnet eClass) is a complete course management system. Prior to version 4.2, a Stored Cross-Site Scripting (XSS) vul…
CVE-2026-22241High7.22026-01-08The Open eClass platform (formerly known as GUnet eClass) is a complete course management system. Prior to version 4.2, an arbitrary file upload vulnerability…
CVE-2026-24670Medium6.52026-02-03The Open eClass platform (formerly known as GUnet eClass) is a complete course management system. Prior to version 4.2, a broken access control vulnerability a…
CVE-2026-24668Medium6.52026-02-03The Open eClass platform (formerly known as GUnet eClass) is a complete course management system. Prior to version 4.2, a broken access control vulnerability a…
CVE-2026-24666Medium6.52026-02-03The Open eClass platform (formerly known as GUnet eClass) is a complete course management system. Prior to version 4.2, a Cross-Site Request Forgery (CSRF) vul…
CVE-2026-24671Medium6.12026-02-03The Open eClass platform (formerly known as GUnet eClass) is a complete course management system. Prior to version 4.2, a Stored Cross-Site Scripting (XSS) vul…
CVE-2026-24664Medium5.32026-02-03The Open eClass platform (formerly known as GUnet eClass) is a complete course management system. Prior to version 4.2, a username enumeration vulnerability al…
CVE-2026-24667Medium5.02026-02-03The Open eClass platform (formerly known as GUnet eClass) is a complete course management system. Prior to version 4.2, failure to invalidate active user sessi…
CVE-2026-24674Medium4.72026-02-03The Open eClass platform (formerly known as GUnet eClass) is a complete course management system. Prior to version 4.2, a Reflected Cross-Site Scripting (XSS)…
CVE-2026-24774Medium4.32026-02-03The Open eClass platform (formerly known as GUnet eClass) is a complete course management system. Prior to version 4.2, a business logic vulnerability allows a…
CVE-2026-24673Medium4.32026-02-03The Open eClass platform (formerly known as GUnet eClass) is a complete course management system. Prior to version 4.2, a file upload validation bypass vulnera…