SQL Injection Vulnerability in Beakon Learning Management System by Beakon Software
CVE-2025-46101

Currently unrated

Key Information:

Vendor: Beakon Software
Status: Beakon Learning Management System
Vendor: CVE Published:; 23 June 2025

🔔 Create Beakon Software Vulnerability Alert

What is CVE-2025-46101?

An SQL Injection vulnerability exists in the Beakon Learning Management System's Sharable Content Object Reference Model (SCORM) prior to version 5.4.3. This vulnerability can enable a remote attacker to manipulate requests sent to the application, potentially allowing them to access sensitive information through crafted inputs in the ks parameter of the json_scorm.php file. This flaw signifies a critical concern for organizations using the Beakon LMS, as it exposes sensitive data to unauthorized access.

References

https://packetstorm.news/files/id/200942/

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 23, 2025
Vulnerability Reserved
Apr 22, 2025