6 matches found
EUVD-2024-0562
Malicious code in bioql PyPI...
Cross-site Scripting Vulnerability in Statement Browser
Impact A maliciously crafted xAPI statement could be used to perform script or other tag injection in the LRS Statement Browser. Patches The problem is patched in version 1.2.17 of the LRS library and version 0.7.5 of SQL LRS. Workarounds No workarounds exist, we recommend upgrading to version...
GHSA-7RW2-3HHP-RC46 Cross-site Scripting Vulnerability in Statement Browser
Impact A maliciously crafted xAPI statement could be used to perform script or other tag injection in the LRS Statement Browser. Patches The problem is patched in version 1.2.17 of the LRS library and version 0.7.5 of SQL LRS. Workarounds No workarounds exist, we recommend upgrading to version...
CVE-2024-26140
com.yetanalytics/lrs is the Yet Analytics Core LRS Library. Prior to version 1.2.17 of the LRS library and version 0.7.5 of SQL LRS, a maliciously crafted xAPI statement could be used to perform script or other tag injection in the LRS Statement Browser. The problem is patched in version 1.2.17 o...
CVE-2024-26140 com.yetanalytics/lrs has Cross-site Scripting Vulnerability in Statement Browser
com.yetanalytics/lrs is the Yet Analytics Core LRS Library. Prior to version 1.2.17 of the LRS library and version 0.7.5 of SQL LRS, a maliciously crafted xAPI statement could be used to perform script or other tag injection in the LRS Statement Browser. The problem is patched in version 1.2.17 o...
CVE-2024-26140 com.yetanalytics/lrs has Cross-site Scripting Vulnerability in Statement Browser
com.yetanalytics/lrs is the Yet Analytics Core LRS Library. Prior to version 1.2.17 of the LRS library and version 0.7.5 of SQL LRS, a maliciously crafted xAPI statement could be used to perform script or other tag injection in the LRS Statement Browser. The problem is patched in version 1.2.17 o...