Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ilias ilias vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-36485
The workflow-engine of ILIAS prior to 7.23 and 8 prior to 8.3 allows remote authenticated users to run arbitrary system commands on the application server as the application user via a malicious BPMN2 workflow definition file.
Ilias Ilias
NA
CVE-2023-36486
The workflow-engine of ILIAS prior to 7.23 and 8 prior to 8.3 allows remote authenticated users to run arbitrary system commands on the application server as the application user by uploading a workflow definition file with a malicious filename.
Ilias Ilias
NA
CVE-2023-36487
The password reset function in ILIAS 7.0_beta1 up to and including 7.20 and 8.0_beta1 up to and including 8.1 allows remote malicious users to take over the account.
Ilias Ilias
383
VMScore
CVE-2018-10306
Services/Form/classes/class.ilDateDurationInputGUI.php and Services/Form/classes/class.ilDateTimeInputGUI.php in ILIAS 5.1.x up to and including 5.3.x prior to 5.3.4 allow XSS via an invalid date.
Ilias Ilias
NA
CVE-2022-45916
ILIAS prior to 7.16 allows XSS.
Ilias Ilias
NA
CVE-2022-45917
ILIAS prior to 7.16 has an Open Redirect.
Ilias Ilias
NA
CVE-2022-45918
ILIAS prior to 7.16 allows External Control of File Name or Path.
Ilias Ilias
383
VMScore
CVE-2017-7583
ILIAS prior to 5.2.3 has XSS via SVG documents.
Ilias Ilias
NA
CVE-2022-45915
ILIAS prior to 7.16 allows OS Command Injection.
Ilias Ilias
383
VMScore
CVE-2019-1010237
Ilias 5.3 prior to 5.3.12; 5.2 prior to 5.2.21 is affected by: Cross Site Scripting (XSS) - CWE-79 Type 2: Stored XSS (or Persistent). The impact is: Execute code in the victim's browser. The component is: Assessment / TestQuestionPool. The attack vector is: Cloze Test Text ...
Ilias Ilias
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
bypass
open redirect
CVE-2024-4358
CVE-2024-24199
CVE-2024-5550
CVE-2024-5305
CVE-2024-30373
CVE-2024-1800
deserialization
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »