CVE-2026-33402

Sakai is a Collaboration and Learning Environment CLE. In versions 23.0 through 23.4 and 25.0 through 25.1, group titles and description can contain cross-site scripting scripts. The patch is included in releases 25.2 and 23.5. As a workaround, one can check the SAKAISITEGROUP table for titles an...

CVE-2026-33402

Sakai is a Collaboration and Learning Environment CLE. In versions 23.0 through 23.4 and 25.0 through 25.1, group titles and description can contain cross-site scripting scripts. The patch is included in releases 25.2 and 23.5. As a workaround, one can check the SAKAISITEGROUP table for titles an...

EUVD-2026-16256

Sakai is a Collaboration and Learning Environment CLE. In versions 23.0 through 23.4 and 25.0 through 25.1, group titles and description can contain cross-site scripting scripts. The patch is included in releases 25.2 and 23.5. As a workaround, one can check the SAKAISITEGROUP table for titles an...

PT-2026-28480

Name of the Vulnerable Software and Affected Versions Sakai versions 23.0 through 23.4 Sakai versions 25.0 through 25.1 Description Sakai is a Collaboration and Learning Environment CLE. Group titles and descriptions can contain cross-site scripting scripts. The issue affects versions 23.0 throug...

Sakai 跨站脚本漏洞

Sakai is an open-source technology solution provided free of charge by Apereo Sakai, featuring rich functionality for learning, teaching, research, and collaboration. Versions of Sakai prior to 23.4 and 25.1 prior to 25.1 contain a cross-site scripting vulnerability. This vulnerability stems from...

BigProf Online Inventory Manager 跨站脚本漏洞

BigProf Online Inventory Manager is an online inventory management system developed by BigProf Corporation. Version 3.2 of BigProf Online Inventory Manager contains a cross-site scripting vulnerability. This vulnerability arises from the group description fields edited by administrators, which ha...