4 matches found
CVE-2017-15538
Stored XSS vulnerability in the Media Objects component of ILIAS before 5.1.21 and 5.2.x before 5.2.9 allows an authenticated user to inject JavaScript to gain administrator privileges, related to the setParameter function in Services/MediaObjects/classes/class.ilMediaItem.php...
ILIAS < 5.1.21, 5.2.x < 5.2.9 XSS Vulnerability
ILIAS eLearning is prone to a stored cross-site scripting XSS vulnerability. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
CVE-2017-15538
Stored XSS vulnerability in the Media Objects component of ILIAS before 5.1.21 and 5.2.x before 5.2.9 allows an authenticated user to inject JavaScript to gain administrator privileges, related to the setParameter function in Services/MediaObjects/classes/class.ilMediaItem.php...
CVE-2017-15538
CVE-2017-15538 affects ILIAS Media Objects. A stored XSS in the Media Objects component (setParameter in Services/MediaObjects/classes/class.ilMediaItem.php) allows an authenticated user to inject JavaScript and gain administrator privileges. Affected versions are ILIAS before 5.1.21 and 5.2.x be...