A Stored Cross-site Scripting (XSS) vulnerability in...
Unreviewed
Published
May 21, 2024
to the GitHub Advisory Database
•
Updated May 23, 2024
Description
Published by the National Vulnerability Database
May 21, 2024
Published to the GitHub Advisory Database
May 21, 2024
Last updated
May 23, 2024
A Stored Cross-site Scripting (XSS) vulnerability in ILIAS 7 before 7.30 and ILIAS 8 before 8.11 allows remote authenticated attackers with tutor privileges to inject arbitrary web script or HTML via XML file upload.
References