Lucene search

K

MitreCVELIST:CVE-2024-33528

HistoryJan 01, 1976 - 12:00 a.m.

CVE-2024-33528

1976-01-0100:00:00

mitre

www.cve.org

6

AI Score

5.2

Confidence

High

A Stored Cross-site Scripting (XSS) vulnerability in ILIAS 7 before 7.30 and ILIAS 8 before 8.11 allows remote authenticated attackers with tutor privileges to inject arbitrary web script or HTML via XML file upload.

References

docu.ilias.de/ilias.php?baseClass=illmpresentationgui&cmd=layout&ref_id=1719&obj_id=170029

insinuator.net/2024/05/security-advisory-achieving-php-code-execution-in-ilias-elearning-lms-before-v7-30-v8-11-v9-1/

AI Score

5.2

Confidence

High

Related for CVELIST:CVE-2024-33528

nvd1 vulnrichment1 cve1