Emaragkos

**Name of the Vulnerable Software and Affected Versions** GUnet OpenEclass version 1.7.3 **Description** The software contains multiple SQL injection flaws. Authenticated attackers can manipulate database queries through unvalidated parameters. Attackers can exploit the `month` parameter in the agenda module and other endpoints to extract sensitive database information using error-based or time-based injection techniques. **Recommendations** Apply updates to address the SQL injection flaws in the agenda module and other endpoints.

**Name of the Vulnerable Software and Affected Versions** GUnet OpenEclass version 1.7.3 **Description** GUnet OpenEclass version 1.7.3 allows authenticated users to bypass file extension restrictions during file uploads. An attacker can rename a PHP file to extensions like .php3 or .PhP to upload a web shell, leading to remote code execution. This bypass occurs because the file type checks in the exercise submission feature are not properly enforced. The vulnerable functionality involves bypassing intended file type checks. **Recommendations** Apply updates to address the file extension restriction bypass in the exercise submission feature.

**Name of the Vulnerable Software and Affected Versions** GUnet OpenEclass version 1.7.3 **Description** Improper access controls and information disclosure flaws in various modules allow unauthenticated and authenticated users to access sensitive data. This includes system information, application version, and uploaded assessments belonging to other students. Attackers can retrieve system and version details or view and download files from other users without proper authorization. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** GUnet OpenEclass version 1.7.3 **Description** User credentials are stored in plaintext, which allows administrators to view usernames and passwords of all registered users without encryption. This exposure of sensitive information increases the risk of credential theft and unauthorized access. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** GUnet OpenEclass version 1.7.3 **Description** The software includes phpMyAdmin 2.10.0.2 by default, which permits remote logins. Attackers with platform access can remotely access phpMyAdmin and upload a shell to view the `config.php` file. This allows the retrieval of the MySQL password, potentially leading to a full database compromise. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** GUnet Open eClass Platform versions prior to 3.11 **Description** The issue allows remote attackers to read students' submitted assessments due to the web server not blocking directory listings and the data directory being inside the web root by default. **Recommendations** For versions prior to 3.11, update to version 3.11 or later to ensure the web server blocks directory listings and the data directory is properly secured.