Cross-site scripting (XSS) vulnerability in GUnet OpenEclass E-learning Platform version 3.15 and before allows a authenticated privileged attacker to execute arbitrary code via the title and description fields of the badge template editing function.
Metrics
Affected Vendors & Products
References
History
Wed, 07 Aug 2024 18:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Openeclass
Openeclass openeclass |
|
CPEs | cpe:2.3:a:openeclass:openeclass:*:*:*:*:*:*:*:* | |
Vendors & Products |
Openeclass
Openeclass openeclass |
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2024-06-13T00:00:00
Updated: 2024-08-02T02:27:53.649Z
Reserved: 2024-04-23T00:00:00
Link: CVE-2024-33253
Vulnrichment
Updated: 2024-07-22T16:06:45.754Z
NVD
Status : Modified
Published: 2024-06-13T23:15:50.403
Modified: 2024-11-21T09:16:41.617
Link: CVE-2024-33253
Redhat
No data.