CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Ilias: >> Ilias Security Vulnerabilities

CVE-2008-5816

SQL injection vulnerability in repository.php in ILIAS 3.7.4 and earlier allows remote attackers to execute arbitrary SQL commands via the ref_id parameter.

CVSS Score

7.5

EPSS Score

0.004

Published

2009-01-02

CVE-2007-5806

Cross-site scripting (XSS) vulnerability in Services/Utilities/classes/class.ilUtil.php in ILIAS 3.8.3 and earlier allows remote attackers to inject arbitrary web script or HTML via attributes inside a domain-name string in the (1) mailing or (2) forum component, as demonstrated using the style and onmouseover HTML attributes.

CVSS Score

4.3

EPSS Score

0.005

Published

2007-11-05

Page 5

Vulnerabilities

Vulnerable Software

Ilias: >> Ilias Security Vulnerabilities

Products

Pricing

Contact Us