Description
The "Submission Web Form" of Turnitin LTI tool/plugin version 1.3 is affected by HTML Injection attacks. The security issue affects the submission web form ("id" and "title" HTTP POST parameters) where the students submit their reports for similarity/plagiarism checks.
Published: 2023-06-29
Score: 5.4 Medium
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

No analysis available yet.

Remediation

No remediation available yet.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
EUVD EUVD EUVD-2023-38872 The "Submission Web Form" of Turnitin LTI tool/plugin version 1.3 is affected by HTML Injection attacks. The security issue affects the submission web form ("id" and "title" HTTP POST parameters) where the students submit their reports for similarity/plagiarism checks.
History

Wed, 27 Nov 2024 15:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Subscriptions

Odysseycs Ithacalabs Turnitin Lti
cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published:

Updated: 2024-11-27T14:21:41.267Z

Reserved: 2023-06-07T00:00:00.000Z

Link: CVE-2023-34831

cve-icon Vulnrichment

Updated: 2024-08-02T16:17:04.184Z

cve-icon NVD

Status : Modified

Published: 2023-06-29T03:15:09.517

Modified: 2024-11-21T08:07:36.087

Link: CVE-2023-34831

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.

Weaknesses