3 matches found
ILIAS eLearning 7.15 Command Injection / XSS / LFI / Open Redirect Vulnerabilities
ILIAS eLearning versions 7.15 and below suffer from authenticated command injection, persistent cross site scripting, local file inclusion, and open redirection vulnerabilities. ======================================================================= title: Multiple critical vulnerabilities produc...
CVE-2022-45916
CVE-2022-45916 affects the ILIAS eLearning platform. The connected PT-Security advisory specifies that versions prior to 7.16 are vulnerable to a cross-site scripting (XSS) issue, with a fixed release at 7.16. The core problem is an XSS vulnerability in ILIAS before 7.16, leading to potential scr...
CVE-2022-45916
ILIAS before 7.16 allows XSS...