Security Advisory

CVE-2024-33528

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-05-21 14:44:18

Last updated 2025-02-13 15:52:42

Assigner mitre

State PUBLISHED

Description

A Stored Cross-site Scripting (XSS) vulnerability in ILIAS 7 before 7.30 and ILIAS 8 before 8.11 allows remote authenticated attackers with tutor privileges to inject arbitrary web script or HTML via XML file upload.

← Browse all CVEs View on cve.org ↗