CVE-2020-37116 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

GUnet OpenEclass 1.7.3 includes phpMyAdmin 2.10.0.2 by default, which allows remote logins. Attackers with access to the platform can remotely access phpMyAdmin…

High CVSS: 8.7

CVE-2020-37116

GUnet OpenEclass 1.7.3 includes phpMyAdmin 2.10.0.2 by default, which allows remote logins. Attackers with access to the platform can remotely access phpMyAdmin and, after uploading a shell, view the config.php file to obtain the MySQL password, leading to full database compromise.

Vendor

Product

Open Eclass Platform

CWE

Yayın Tarihi

2026-02-03 18:16:12

Güncelleme

2026-02-10 21:20:24

Source Identifier

disclosure@vulncheck.com

KEV Date Added

-

Kategoriler

CWE-284 Open Eclass Platform HIGH Gunet 2026

Referanslar

https://download.openeclass.org/files/docs/1.7/CHANGES.txt https://www.exploit-db.com/exploits/48163 https://www.openeclass.org/ https://www.vulncheck.com/advisories/gunet-openeclass-e-learning-platform-phpmyadmin-remote-access

Benzer Kayıtlar

Medium

CVE-2026-24673

The Open eClass platform (formerly known as GUnet eClass) is a complete course management system. Prior to version 4.2,…

Medium

CVE-2026-24674

The Open eClass platform (formerly known as GUnet eClass) is a complete course management system. Prior to version 4.2,…

High

CVE-2026-24773

The Open eClass platform (formerly known as GUnet eClass) is a complete course management system. Prior to version 4.2,…

Medium

CVE-2026-24774

The Open eClass platform (formerly known as GUnet eClass) is a complete course management system. Prior to version 4.2,…

Medium

CVE-2026-24671

The Open eClass platform (formerly known as GUnet eClass) is a complete course management system. Prior to version 4.2,…

High

CVE-2026-24672

The Open eClass platform (formerly known as GUnet eClass) is a complete course management system. Prior to version 4.2,…