Browse all 3 CVE security advisories affecting Academy. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Academy is an educational platform providing online learning management systems. Historically, it has been susceptible to remote code execution, cross-site scripting, and privilege escalation vulnerabilities, often stemming from insufficient input validation and access controls. The platform's security posture has been marked by regular patch releases addressing these issues, though no major public security incidents have been documented. With three CVEs currently on record, Academy maintains a moderate security risk profile typical of web-based educational tools that handle user data and facilitate remote learning environments.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2023-4974 | Academy LMS GET Parameter filter sql injection — LMSCWE-89 | 6.3 | Medium | 2023-09-15 |
| CVE-2023-4973 | Academy LMS GET Parameter filter cross site scripting — LMSCWE-79 | 3.5 | Low | 2023-09-15 |
| CVE-2023-4119 | Academy LMS courses cross site scripting — LMSCWE-79 | 4.3 | Medium | 2023-08-03 |
This page lists every published CVE security advisory associated with Academy. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.