Florian Kunushevci

1 exploit Active since Jan 2018
CVE-2018-5688 EXPLOITDB MEDIUM text WORKING POC
ILIAS < 5.2.4 - Cross-Site Scripting via Setup Component cmd Parameter
ILIAS before 5.2.4 has XSS via the cmd parameter to the displayHeader function in setup/classes/class.ilSetupGUI.php in the Setup component.
CVSS 6.1