4 matches found
CVE-2022-45917
ILIAS before 7.16 has an Open Redirect...
ILIAS eLearning 7.15 Command Injection / XSS / LFI / Open Redirect Vulnerabilities
ILIAS eLearning versions 7.15 and below suffer from authenticated command injection, persistent cross site scripting, local file inclusion, and open redirection vulnerabilities. ======================================================================= title: Multiple critical vulnerabilities produc...
CVE-2022-45917
ILIAS before 7.16 has an Open Redirect...
CVE-2022-45917
CVE-2022-45917 affects ILIAS eLearning versions before 7.16 and is an Open Redirect vulnerability. Multiple connected sources confirm the issue originates in the Shibboleth logout flow (shib_logout.php) where a crafted return parameter can redirect users to an arbitrary URL. Impact is described a...