CVE-2018-11118

The RSS subsystem in ILIAS 5.1.x, 5.2.x, and 5.3.x before 5.3.5 has XSS via a URI to Services/Feeds/classes/class.ilExternalFeedItem.php...

CVE-2018-11118

CVE-2018-11118 concerns ILIAS, where the RSS subsystem is vulnerable to cross-site scripting via a URI to Services/Feeds/classes/class.ilExternalFeedItem.php. Affected products are ILIAS 5.1.x, 5.2.x, and 5.3.x before 5.3.5. The underlying issue is an XSS flaw in handling the feed item URI, poten...