Browse all 5 CVE security advisories affecting Openeclass. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Openeclass serves as an open-source e-learning platform designed for educational institutions to deliver online courses and manage academic content. Historically, the platform has been susceptible to various vulnerability classes, including remote code execution, cross-site scripting, and privilege escalation, as evidenced by its five recorded CVEs. While no major security incidents have been widely documented, the presence of multiple CVEs indicates ongoing security challenges. The platform's web-based nature and extensive user permissions make it a potential target for attackers seeking unauthorized access or system compromise. Regular security updates and proper configuration are essential to mitigate risks associated with these vulnerabilities.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2020-37116 | GUnet OpenEclass 1.7.3 E-learning platform - phpMyAdmin Remote Access — GUnet OpenEclassCWE-284 | 8.8 | High | 2026-02-03 |
| CVE-2020-37115 | GUnet OpenEclass 1.7.3 E-learning platform - Plaintext Password Storage — GUnet OpenEclassCWE-256 | 6.5 | Medium | 2026-02-03 |
| CVE-2020-37114 | GUnet OpenEclass 1.7.3 E-learning platform - Information Disclosure — GUnet OpenEclassCWE-200 | 4.3 | Medium | 2026-02-03 |
| CVE-2020-37113 | GUnet OpenEclass 1.7.3 E-learning platform - File Upload Extension Bypass — GUnet OpenEclassCWE-434 | 8.8 | High | 2026-02-03 |
| CVE-2020-37112 | GUnet OpenEclass 1.7.3 E-learning platform - 'month' SQL Injection — GUnet OpenEclassCWE-89 | 7.1 | High | 2026-02-03 |
This page lists every published CVE security advisory associated with Openeclass. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.