Browse all 5 CVE security advisories affecting Learning Digital. AI-powered Chinese analysis, POCs, and references for each vulnerability.
LEARNING DIGITAL provides educational technology solutions with a core focus on digital learning platforms. Historically, the organization has faced vulnerabilities including remote code execution, cross-site scripting, and privilege escalation issues, as evidenced by its five recorded CVEs. These weaknesses have primarily affected web applications and authentication systems. While no major public security incidents have been documented, the consistent pattern of vulnerabilities suggests potential risks in input validation and access control mechanisms. The organization's products, serving educational institutions, require robust security measures to protect sensitive student and institutional data from exploitation.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-1389 | Learning Digital Orca HCM - SQL Injection — Orca HCMCWE-89 | 8.8 | High | 2025-02-17 |
| CVE-2025-1388 | Learning Digital Orca HCM - Arbitrary File Upload — Orca HCMCWE-434 | 8.8 | High | 2025-02-17 |
| CVE-2025-1387 | Learning Digital Orca HCM - Improper Authentication — Orca HCMCWE-1390 | 9.8 | Critical | 2025-02-17 |
| CVE-2024-8585 | LEARNING DIGITAL Orca HCM - Arbitrary File Download — Orca HCMCWE-22 | 6.5 | Medium | 2024-09-09 |
| CVE-2024-8584 | LEARNING DIGITAL Orca HCM - Missing Authentication — Orca HCMCWE-306 | 9.8 | Critical | 2024-09-09 |
This page lists every published CVE security advisory associated with Learning Digital. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.