Show filters
2 Total Results
Displaying 1-2 of 2
Sort by:
Attacker Value
Unknown

CVE-2020-25267

Disclosure Date: November 10, 2020 (last updated February 22, 2025)
An XSS issue exists in the question-pool file-upload preview feature in ILIAS 6.4.
Attack Vector: NetworkPrivileges: LowUser Interaction: Required
0
0
Attacker Value
Unknown

CVE-2020-25268

Disclosure Date: November 10, 2020 (last updated February 22, 2025)
Remote Code Execution can occur via the external news feed in ILIAS 6.4 because of incorrect parameter sanitization for Magpie RSS data.
Attack Vector: NetworkPrivileges: LowUser Interaction: None
0
0