439 matches found
CVE-2024-33528
A Stored Cross-site Scripting XSS vulnerability in ILIAS 7 before 7.30 and ILIAS 8 before 8.11 allows remote authenticated attackers with tutor privileges to inject arbitrary web script or HTML via XML file upload...
CVE-2024-33529
ILIAS 7 before 7.30 and ILIAS 8 before 8.11 as well as ILIAS 9.0 allow remote authenticated attackers with administrative privileges to execute operating system commands via file uploads with dangerous types...
CVE-2024-33526
A Stored Cross-site Scripting XSS vulnerability in the "Import of user role and title of user role" feature in ILIAS 7 before 7.30 and ILIAS 8 before 8.11 allows remote authenticated attackers with administrative privileges to inject arbitrary web script or HTML via XML file upload...
CVE-2024-33527
A Stored Cross-site Scripting XSS vulnerability in the "Import of Users and login name of user" feature in ILIAS 7 before 7.30 and ILIAS 8 before 8.11 allows remote authenticated attackers with administrative privileges to inject arbitrary web script or HTML via XML file upload...
CVE-2024-33527
The CVE-2024-33527 entry describes a Stored Cross-site Scripting (XSS) flaw in ILIAS 7.x prior to 7.30 and 8.x prior to 8.11, exploitable by remote authenticated attackers with administrative privileges via XML file uploads in the Import of Users and login name of user feature. Affected component...
CVE-2024-33527
A Stored Cross-site Scripting XSS vulnerability in the "Import of Users and login name of user" feature in ILIAS 7 before 7.30 and ILIAS 8 before 8.11 allows remote authenticated attackers with administrative privileges to inject arbitrary web script or HTML via XML file upload...
CVE-2024-33526
A Stored Cross-site Scripting XSS vulnerability in the "Import of user role and title of user role" feature in ILIAS 7 before 7.30 and ILIAS 8 before 8.11 allows remote authenticated attackers with administrative privileges to inject arbitrary web script or HTML via XML file upload...
CVE-2024-33526
A Stored Cross-site Scripting XSS vulnerability in the "Import of user role and title of user role" feature in ILIAS 7 before 7.30 and ILIAS 8 before 8.11 allows remote authenticated attackers with administrative privileges to inject arbitrary web script or HTML via XML file upload...
CVE-2024-33529
ILIAS 7 before 7.30 and ILIAS 8 before 8.11 as well as ILIAS 9.0 allow remote authenticated attackers with administrative privileges to execute operating system commands via file uploads with dangerous types...
CVE-2024-33529
Summary: CVE-2024-33529 affects ILIAS versions 7.x < 7.30, 8.x
CVE-2024-33529
ILIAS 7 before 7.30 and ILIAS 8 before 8.11 as well as ILIAS 9.0 allow remote authenticated attackers with administrative privileges to execute operating system commands via file uploads with dangerous types...
CVE-2024-33529
ILIAS 7 before 7.30 and ILIAS 8 before 8.11 as well as ILIAS 9.0 allow remote authenticated attackers with administrative privileges to execute operating system commands via file uploads with dangerous types...
CVE-2024-33528
A Stored Cross-site Scripting XSS vulnerability in ILIAS 7 before 7.30 and ILIAS 8 before 8.11 allows remote authenticated attackers with tutor privileges to inject arbitrary web script or HTML via XML file upload...
CVE-2024-33528
A Stored Cross-site Scripting XSS vulnerability in ILIAS 7 before 7.30 and ILIAS 8 before 8.11 allows remote authenticated attackers with tutor privileges to inject arbitrary web script or HTML via XML file upload...
ILIAS 安全漏洞
ILIAS is an open source learning management system. A security vulnerability exists in ILIAS versions 7.20 through 7.30, 8.4 through 8.10, and 9.0, which stems from a stored cross-site scripting XSS vulnerability that allows remote, authenticated attackers to inject arbitrary web script or HTML...
PT-2024-25298 · Ilias · Ilias
Name of the Vulnerable Software and Affected Versions: ILIAS versions 7.0.0 through 7.29 ILIAS versions 8.0.0 through 8.10 Description: A Stored Cross-site Scripting XSS issue allows remote authenticated attackers with tutor privileges to inject arbitrary web script or HTML via XML file upload...
ILIAS 安全漏洞
ILIAS is an open source learning management system. A security vulnerability exists in ILIAS versions 7.x prior to 7.30, 8.x prior to 8.11, and 9.0, which stems from a vulnerability that could allow a remote, authenticated attacker to execute operating system commands via a dangerous type of file...
ILIAS 安全漏洞
ILIAS is an open source learning management system. A security vulnerability exists in ILIAS versions 7.x prior to 7.30 and 8.x prior to 8.11, which stems from a stored cross-site scripting XSS vulnerability that could allow a remote, authenticated attacker to inject arbitrary web script or HTML...
ILIAS 安全漏洞
ILIAS is an open source learning management system. A security vulnerability exists in ILIAS versions 7.x prior to 7.30 and 8.x prior to 8.11, which stems from a stored cross-site scripting XSS vulnerability that could allow a remote, authenticated attacker to inject arbitrary web script or HTML...
ILIAS 安全漏洞
ILIAS is an open source learning management system. A security vulnerability exists in ILIAS versions 7.x prior to 7.30 and 8.x prior to 8.11, which stems from a stored cross-site scripting XSS vulnerability that could allow a remote, authenticated attacker to inject arbitrary web script or HTML...