2 matches found
CVE-2019-1010237
Ilias 5.3 before 5.3.12; 5.2 before 5.2.21 is affected by: Cross Site Scripting XSS - CWE-79 Type 2: Stored XSS or Persistent. The impact is: Execute code in the victim's browser. The component is: Assessment / TestQuestionPool. The attack vector is: Cloze Test Text gap attacker / Corrections vie...
CVE-2019-1010237
CVE-2019-1010237 affects ILIAS prior to 5.3.12 and 5.2.21, with a Stored XSS (CWE-79, Type 2) in the Assessment / TestQuestionPool . The vulnerability arises from inadequate validation of client-side data, allowing an attacker to execute code in the victim’s browser via the Cloze Test Text gap (a...