ILIAS 7.21 and 8.0_beta1 up to and including 8.2 is vulnerable to reflected Cross-Site Scripting (XSS).
ilias ilias
ilias ilias 7.21
ilias ilias 8.0