Filtered by vendor Area9lyceum Subscriptions
Filtered by product Rhapsode Learner Subscriptions

Search

Switch to Advanced Search (Beta)
Total 1 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2025-67811 1 Area9lyceum 1 Rhapsode Learner 2026-01-23 6.5 Medium
Area9 Rhapsode 1.47.3 allows SQL Injection via multiple API endpoints accessible to authenticated users. Insufficient input validation allows remote attackers to inject arbitrary SQL commands, resulting in unauthorized database access and potential compromise of sensitive data. Fixed in v.1.47.4 and beyond.