ILIAS 8.1

CPE Details

ILIAS 8.1
ilias
ilias
8.1
2023-07-06
17h20 +00:00
2023-07-07
10h22 +00:00
CPE NVD
Alerte pour un CPE
Restez informé de toutes modifications pour un CPE spécifique.
Gestion des notifications

CPE Name: cpe:2.3:a:ilias:ilias:8.1:*:*:*:*:*:*:*

Informations

Vendor

ilias

Product

ilias

Version

8.1

Related CVE

Open and find in CVE List

CVE ID Publié Description Score Gravité
CVE-2023-36485 2023-12-24 23h00 +00:00 The workflow-engine of ILIAS before 7.23 and 8 before 8.3 allows remote authenticated users to run arbitrary system commands on the application server as the application user via a malicious BPMN2 workflow definition file.
7.2
Haute
CVE-2023-36486 2023-12-24 23h00 +00:00 The workflow-engine of ILIAS before 7.23 and 8 before 8.3 allows remote authenticated users to run arbitrary system commands on the application server as the application user by uploading a workflow definition file with a malicious filename.
7.2
Haute
CVE-2023-36488 2023-06-29 00h00 +00:00 ILIAS 7.21 and 8.0_beta1 through 8.2 is vulnerable to stored Cross Site Scripting (XSS).
5.4
Moyen
CVE-2023-36484 2023-06-28 22h00 +00:00 ILIAS 7.21 and 8.0_beta1 through 8.2 is vulnerable to reflected Cross-Site Scripting (XSS).
6.1
Moyen
CVE-2023-36487 2023-06-28 22h00 +00:00 The password reset function in ILIAS 7.0_beta1 through 7.20 and 8.0_beta1 through 8.1 allows remote attackers to take over the account.
9.8
Critique