Cross-site scripting (XSS) vulnerability in GUnet OpenEclass E-learning Platform version 3.15 and before allows a authenticated privileged attacker to execute arbitrary code via the title and description fields of the badge template editing function.
History

Wed, 07 Aug 2024 18:45:00 +0000

Type Values Removed Values Added
First Time appeared Openeclass
Openeclass openeclass
CPEs cpe:2.3:a:openeclass:openeclass:*:*:*:*:*:*:*:*
Vendors & Products Openeclass
Openeclass openeclass

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2024-06-13T00:00:00

Updated: 2024-08-02T02:27:53.649Z

Reserved: 2024-04-23T00:00:00

Link: CVE-2024-33253

cve-icon Vulnrichment

Updated: 2024-07-22T16:06:45.754Z

cve-icon NVD

Status : Modified

Published: 2024-06-13T23:15:50.403

Modified: 2024-11-21T09:16:41.617

Link: CVE-2024-33253

cve-icon Redhat

No data.