Lucene search
K

439 matches found

NVD
NVD
added 2024/05/21 3:15 p.m.24 views

CVE-2024-33528

A Stored Cross-site Scripting XSS vulnerability in ILIAS 7 before 7.30 and ILIAS 8 before 8.11 allows remote authenticated attackers with tutor privileges to inject arbitrary web script or HTML via XML file upload...

4.7CVSS5.2AI score0.00478EPSS
Exploits1References2
NVD
NVD
added 2024/05/21 3:15 p.m.18 views

CVE-2024-33529

ILIAS 7 before 7.30 and ILIAS 8 before 8.11 as well as ILIAS 9.0 allow remote authenticated attackers with administrative privileges to execute operating system commands via file uploads with dangerous types...

7.2CVSS7AI score0.00901EPSS
Exploits1References2
NVD
NVD
added 2024/05/21 3:15 p.m.24 views

CVE-2024-33526

A Stored Cross-site Scripting XSS vulnerability in the "Import of user role and title of user role" feature in ILIAS 7 before 7.30 and ILIAS 8 before 8.11 allows remote authenticated attackers with administrative privileges to inject arbitrary web script or HTML via XML file upload...

7.1CVSS5.2AI score0.00503EPSS
Exploits1References2
OSV
OSV
added 2024/05/21 3:1 p.m.6 views

CVE-2024-33527

A Stored Cross-site Scripting XSS vulnerability in the "Import of Users and login name of user" feature in ILIAS 7 before 7.30 and ILIAS 8 before 8.11 allows remote authenticated attackers with administrative privileges to inject arbitrary web script or HTML via XML file upload...

5.4CVSS5.5AI score0.00473EPSS
Exploits1References4
CVE
CVE
added 2024/05/21 3:1 p.m.87 views

CVE-2024-33527

The CVE-2024-33527 entry describes a Stored Cross-site Scripting (XSS) flaw in ILIAS 7.x prior to 7.30 and 8.x prior to 8.11, exploitable by remote authenticated attackers with administrative privileges via XML file uploads in the Import of Users and login name of user feature. Affected component...

5.4CVSS5.3AI score0.00473EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2024/05/21 3:1 p.m.30 views

CVE-2024-33527

A Stored Cross-site Scripting XSS vulnerability in the "Import of Users and login name of user" feature in ILIAS 7 before 7.30 and ILIAS 8 before 8.11 allows remote authenticated attackers with administrative privileges to inject arbitrary web script or HTML via XML file upload...

5.2AI score0.00473EPSS
Exploits1References2
Cvelist
Cvelist
added 2024/05/21 2:52 p.m.30 views

CVE-2024-33526

A Stored Cross-site Scripting XSS vulnerability in the "Import of user role and title of user role" feature in ILIAS 7 before 7.30 and ILIAS 8 before 8.11 allows remote authenticated attackers with administrative privileges to inject arbitrary web script or HTML via XML file upload...

5.2AI score0.00503EPSS
Exploits1References2
OSV
OSV
added 2024/05/21 2:52 p.m.6 views

CVE-2024-33526

A Stored Cross-site Scripting XSS vulnerability in the "Import of user role and title of user role" feature in ILIAS 7 before 7.30 and ILIAS 8 before 8.11 allows remote authenticated attackers with administrative privileges to inject arbitrary web script or HTML via XML file upload...

7.1CVSS5.5AI score0.00503EPSS
Exploits1References4
OSV
OSV
added 2024/05/21 2:46 p.m.2 views

CVE-2024-33529

ILIAS 7 before 7.30 and ILIAS 8 before 8.11 as well as ILIAS 9.0 allow remote authenticated attackers with administrative privileges to execute operating system commands via file uploads with dangerous types...

7.2CVSS7.5AI score0.00901EPSS
Exploits1References4
CVE
CVE
added 2024/05/21 2:46 p.m.86 views

CVE-2024-33529

Summary: CVE-2024-33529 affects ILIAS versions 7.x < 7.30, 8.x

7.2CVSS7.2AI score0.00901EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichment
added 2024/05/21 2:46 p.m.20 views

CVE-2024-33529

ILIAS 7 before 7.30 and ILIAS 8 before 8.11 as well as ILIAS 9.0 allow remote authenticated attackers with administrative privileges to execute operating system commands via file uploads with dangerous types...

7.3AI score0.00901EPSS
Exploits1References2
Cvelist
Cvelist
added 2024/05/21 2:46 p.m.32 views

CVE-2024-33529

ILIAS 7 before 7.30 and ILIAS 8 before 8.11 as well as ILIAS 9.0 allow remote authenticated attackers with administrative privileges to execute operating system commands via file uploads with dangerous types...

7AI score0.00901EPSS
Exploits1References2
Cvelist
Cvelist
added 2024/05/21 2:44 p.m.37 views

CVE-2024-33528

A Stored Cross-site Scripting XSS vulnerability in ILIAS 7 before 7.30 and ILIAS 8 before 8.11 allows remote authenticated attackers with tutor privileges to inject arbitrary web script or HTML via XML file upload...

5.2AI score0.00478EPSS
Exploits1References2
OSV
OSV
added 2024/05/21 2:44 p.m.5 views

CVE-2024-33528

A Stored Cross-site Scripting XSS vulnerability in ILIAS 7 before 7.30 and ILIAS 8 before 8.11 allows remote authenticated attackers with tutor privileges to inject arbitrary web script or HTML via XML file upload...

4.7CVSS5.5AI score0.00478EPSS
Exploits1References4
CNNVD
CNNVD
added 2024/05/21 12:0 a.m.4 views

ILIAS 安全漏洞

ILIAS is an open source learning management system. A security vulnerability exists in ILIAS versions 7.20 through 7.30, 8.4 through 8.10, and 9.0, which stems from a stored cross-site scripting XSS vulnerability that allows remote, authenticated attackers to inject arbitrary web script or HTML...

4.3CVSS5.3AI score0.0053EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2024/05/21 12:0 a.m.5 views

PT-2024-25298 · Ilias · Ilias

Name of the Vulnerable Software and Affected Versions: ILIAS versions 7.0.0 through 7.29 ILIAS versions 8.0.0 through 8.10 Description: A Stored Cross-site Scripting XSS issue allows remote authenticated attackers with tutor privileges to inject arbitrary web script or HTML via XML file upload...

4.7CVSS5.8AI score0.00478EPSS
Exploits1References7
CNNVD
CNNVD
added 2024/05/21 12:0 a.m.5 views

ILIAS 安全漏洞

ILIAS is an open source learning management system. A security vulnerability exists in ILIAS versions 7.x prior to 7.30, 8.x prior to 8.11, and 9.0, which stems from a vulnerability that could allow a remote, authenticated attacker to execute operating system commands via a dangerous type of file...

7.2CVSS6.9AI score0.00901EPSS
Exploits1References2
CNNVD
CNNVD
added 2024/05/21 12:0 a.m.5 views

ILIAS 安全漏洞

ILIAS is an open source learning management system. A security vulnerability exists in ILIAS versions 7.x prior to 7.30 and 8.x prior to 8.11, which stems from a stored cross-site scripting XSS vulnerability that could allow a remote, authenticated attacker to inject arbitrary web script or HTML...

4.7CVSS5.2AI score0.00478EPSS
Exploits1References2
CNNVD
CNNVD
added 2024/05/21 12:0 a.m.2 views

ILIAS 安全漏洞

ILIAS is an open source learning management system. A security vulnerability exists in ILIAS versions 7.x prior to 7.30 and 8.x prior to 8.11, which stems from a stored cross-site scripting XSS vulnerability that could allow a remote, authenticated attacker to inject arbitrary web script or HTML...

7.1CVSS5.2AI score0.00503EPSS
Exploits1References2
CNNVD
CNNVD
added 2024/05/21 12:0 a.m.5 views

ILIAS 安全漏洞

ILIAS is an open source learning management system. A security vulnerability exists in ILIAS versions 7.x prior to 7.30 and 8.x prior to 8.11, which stems from a stored cross-site scripting XSS vulnerability that could allow a remote, authenticated attacker to inject arbitrary web script or HTML...

5.4CVSS5.2AI score0.00473EPSS
Exploits1References2
Rows per page
Query Builder