atutor security advisories
4 threat alerts tracking vulnerabilities and security advisories that affect atutor products.
Vulnios monitors atutor CVE feeds, vendor advisories, CISA KEV listings, and exploit-prediction data continuously. Each alert below is enriched with severity, exploitation status, affected products, and a remediation path. Use this page to scan recent atutor security news in one place, or click into an individual alert for full detail.
Critical Vulnerability: CVE-2017-1000003 — atutor — atutor
ATutor versions 2.2.1 and earlier are vulnerable to an incorrect access control check vulnerability in the Social Application component resulting in privilege escalation. ATutor versions 2.2.1 and ear
criticalCVE-2017-1000003Critical Vulnerability: CVE-2017-1000002 — atutor — atutor
ATutor versions 2.2.1 and earlier are vulnerable to a directory traversal and file extension check bypass in the Course component resulting in code execution. ATutor versions 2.2.1 and earlier are vul
criticalCVE-2017-1000002Critical Vulnerability: CVE-2017-1000004 — atutor — atutor
ATutor version 2.2.1 and earlier are vulnerable to a SQL injection in the Assignment Dropbox, BasicLTI, Blog Post, Blog, Group Course Email, Course Alumni, Course Enrolment, Group Membership, Course u
criticalCVE-2017-1000004Critical Vulnerability: CVE-2016-2555 — atutor — atutor
SQL injection vulnerability in include/lib/mysql_connect.inc.php in ATutor 2.2.1 allows remote attackers to execute arbitrary SQL commands via the searchFriends function to friends.inc.php.
criticalCVE-2016-2555
Track atutor exposure across your environment
Vulnios automatically cross-references your asset inventory against new atutor CVEs and surfaces only what affects you. No more sifting manually — actionable findings only.
Start a free scan