CVE-2023-45867
ILIAS (2013-09-12 release) contains a Directory Traversal local file inclusion vulnerability in the ScormAicc module (CVE-2023-45867). An attacker with a privileged account (typically tutor) can manipulate a URL file parameter to traverse directories and read files readable by the web server user...