Lucene search
K

15 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 10:48 a.m.6 views

CVE-2022-31478

The UserTakeOver plugin before 4.0.1 for ILIAS allows an attacker to list all users via the search function...

4.3CVSS6.9AI score0.00616EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2008-5786

Malware in sbrugna...

7.5CVSS6.4AI score0.01267EPSS
Exploits1References5
RedhatCVE
RedhatCVE
added 2025/05/23 4:1 a.m.14 views

CVE-2023-36487

The password reset function in ILIAS 7.0beta1 through 7.20 and 8.0beta1 through 8.1 allows remote attackers to take over the account...

9.8CVSS7.2AI score0.01026EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 4:1 a.m.12 views

CVE-2023-36488

ILIAS 7.21 and 8.0beta1 through 8.2 is vulnerable to stored Cross Site Scripting XSS...

5.4CVSS6.2AI score0.00394EPSS
Exploits0
CNNVD
CNNVD
added 2023/10/26 12:0 a.m.4 views

ILIAS Security Vulnerabilities

ILIAS is an open source learning management system. A security vulnerability exists in ILIAS version 7.25 that stems from allowing an attacker to conduct a high-impact directory traversal attack, which could result in a complete loss of confidentiality, exposure of sensitive resources, and denial...

8.1CVSS6.7AI score0.01116EPSS
Exploits2References3
NVD
NVD
added 2022/12/07 1:15 a.m.20 views

CVE-2022-45916

ILIAS before 7.16 allows XSS...

5.4CVSS0.00871EPSS
Exploits3References3
NVD
NVD
added 2022/12/07 1:15 a.m.23 views

CVE-2022-45915

ILIAS before 7.16 allows OS Command Injection...

8.8CVSS0.04657EPSS
Exploits3References3
NVD
NVD
added 2022/12/07 1:15 a.m.21 views

CVE-2022-45918

ILIAS before 7.16 allows External Control of File Name or Path...

6.5CVSS0.01178EPSS
Exploits3References3
Prion
Prion
added 2022/12/07 1:15 a.m.18 views

Open redirect

ILIAS before 7.16 has an Open Redirect...

5.8CVSS6.3AI score0.0199EPSS
Exploits3References3Affected Software1
OSV
OSV
added 2020/11/10 10:15 p.m.4 views

CVE-2020-25268

Remote Code Execution can occur via the external news feed in ILIAS 6.4 because of incorrect parameter sanitization for Magpie RSS data...

8.8CVSS5.9AI score0.02315EPSS
Exploits1References1
NVD
NVD
added 2019/07/22 3:15 p.m.8 views

CVE-2019-1010237

Ilias 5.3 before 5.3.12; 5.2 before 5.2.21 is affected by: Cross Site Scripting XSS - CWE-79 Type 2: Stored XSS or Persistent. The impact is: Execute code in the victim's browser. The component is: Assessment / TestQuestionPool. The attack vector is: Cloze Test Text gap attacker / Corrections vie...

6.1CVSS5.9AI score0.01662EPSS
Exploits0References3
NVD
NVD
added 2018/05/23 8:29 p.m.17 views

CVE-2018-10428

ILIAS before 5.1.26, 5.2.x before 5.2.15, and 5.3.x before 5.3.4, due to inconsistencies in parameter handling, is vulnerable to various instances of reflected cross-site-scripting...

6.1CVSS6.2AI score0.01951EPSS
Exploits3References6
NVD
NVD
added 2018/01/14 8:29 p.m.20 views

CVE-2018-5688

ILIAS before 5.2.4 has XSS via the cmd parameter to the displayHeader function in setup/classes/class.ilSetupGUI.php in the Setup component...

6.1CVSS6AI score0.03279EPSS
Exploits4References3
Prion
Prion
added 2018/01/14 8:29 p.m.15 views

Design/Logic Flaw

ILIAS before 5.2.4 has XSS via the cmd parameter to the displayHeader function in setup/classes/class.ilSetupGUI.php in the Setup component...

4.3CVSS5.9AI score0.03279EPSS
Exploits4References3Affected Software1
Cvelist
Cvelist
added 2017/04/07 7:0 p.m.18 views

CVE-2017-7583

ILIAS before 5.2.3 has XSS via SVG documents...

6AI score0.01152EPSS
Exploits0References4
Rows per page
Query Builder