ILIAS before 7.16 allows External Control of File Name or Path.
CVSS Score
6.5
EPSS Score
0.005
Published
2022-12-07
In ILIAS through 7.10, lack of verification when changing an email address (on the Profile Page) allows remote attackers to take over accounts.
CVSS Score
4.3
EPSS Score
0.003
Published
2022-06-29
Page 2