CVE-2018-10665

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2018-10665
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2018-10665.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2018-10665
Published
2018-05-02T17:29:00.250Z
Modified
2026-04-02T01:12:18.718573Z
Severity
  • 6.1 (Medium) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N CVSS Calculator
Summary
[none]
Details

ILIAS 5.3.4 has XSS through unsanitized output of PHPSELF, related to shiblogout.php and third-party demo files.

References

Affected packages

Git / github.com/ilias-elearning/ilias

Affected ranges

Type
GIT
Repo
https://github.com/ilias-elearning/ilias
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
aad29de0e53aaa23980fa34f4c4f37a1182e04a2
Fixed
3fe6aa778ca06080cf1b7303cbc458aa0c42392a
Fixed
c9c9211bd689f2dda02006159e69a856eae8944d
Database specific 
{
    "versions": [
        {
            "introduced": "0"
        },
        {
            "last_affected": "5.3.4"
        }
    ]
}

Affected versions

4.*
4.3.5
4.3.8
4.3.9
4.4.1
4.4.2
4.4.3
4.4.4
4.4.5
4.4.6
4.4.7
4.5.0_beta1
5.*
5.0.0
5.0.0_beta2
Other
show
svn/tags/Release_4_3_0
svn/tags/Release_4_3_0_beta1
svn/tags/Release_4_3_0beta2
svn/tags/Release_4_3_1
svn/tags/Release_4_3_10
svn/tags/Release_4_3_2
svn/tags/Release_4_3_3
svn/tags/Release_4_3_4
svn/tags/Release_4_3_5
svn/tags/Release_4_3_6
svn/tags/Release_4_3_7
svn/tags/Release_4_3_8
svn/tags/Release_4_3_9
svn/tags/Release_4_4_0
svn/tags/Release_4_4_0_beta1
svn/tags/Release_4_4_0_beta1a
svn/tags/Release_4_4_0_beta2
svn/tags/Release_4_4_0_rc1
svn/tags/Release_4_4_1
svn/tags/Release_4_4_2
svn/tags/Release_4_4_3
svn/tags/Release_4_4_4
svn/tags/Release_4_4_5
svn/tags/Release_4_4_6
svn/tags/Release_4_4_7
svn/tags/Release_4_5_0_beta1
svn/tags/Release_5_0_0
svn/tags/Release_5_0_0_beta2
test
v5
vrelease_7
v10.*
v10.0
v10.0_beta1
v10.0_beta2
v10.0_beta3
v10.1
v10.2
v10.3
v10.4
v10.5
v10.6
v11.*
v11.0_alpha
v11.0_beta1
v12.*
v12.0_alpha
v3.*
v3.8
v4.*
v4.3.11
v4.3.12
v4.4.10
v4.4.11
v4.4.12
v4.4.13
v4.4.14
v4.4.15
v4.4.8
v4.4.9
v5.*
v5.0.1
v5.0.10
v5.0.11
v5.0.12
v5.0.13
v5.0.14
v5.0.15
v5.0.16
v5.0.17
v5.0.18
v5.0.19
v5.0.2
v5.0.20
v5.0.21
v5.0.22
v5.0.23
v5.0.3
v5.0.4
v5.0.5
v5.0.6
v5.0.7
v5.0.8
v5.0.9
v5.1.0
v5.1.0beta1
v5.1.0beta2
v5.1.1
v5.1.10
v5.1.11
v5.1.12
v5.1.13
v5.1.14
v5.1.15
v5.1.16
v5.1.17
v5.1.18
v5.1.19
v5.1.2
v5.1.20
v5.1.21
v5.1.22
v5.1.23
v5.1.24
v5.1.25
v5.1.26
v5.1.27
v5.1.28
v5.1.3
v5.1.4
v5.1.5
v5.1.6
v5.1.7
v5.1.8
v5.1.9
v5.2.0
v5.2.0beta1
v5.2.1
v5.2.10
v5.2.11
v5.2.12
v5.2.13
v5.2.14
v5.2.15
v5.2.16
v5.2.17
v5.2.18
v5.2.19
v5.2.2
v5.2.20
v5.2.21
v5.2.22
v5.2.23
v5.2.24
v5.2.25
v5.2.3
v5.2.4
v5.2.5
v5.2.6
v5.2.7
v5.2.8
v5.2.9
v5.3.0
v5.3.0beta1
v5.3.0beta2
v5.3.0beta3
v5.3.0beta4
v5.3.1
v5.3.2
v5.3.3
v5.3.4
v5.4.0
v5.4.0-beta.1
v5.4.1
v5.4.10
v5.4.11
v5.4.12
v5.4.13
v5.4.14
v5.4.15
v5.4.16
v5.4.17
v5.4.18
v5.4.19
v5.4.2
v5.4.20
v5.4.21
v5.4.22
v5.4.23
v5.4.24
v5.4.25
v5.4.26
v5.4.3
v5.4.4
v5.4.5
v5.4.6
v5.4.7
v5.4.8
v5.4.9
v6.*
v6.0
v6.0_beta1
v6.0_beta2
v6.1
v6.10
v6.11
v6.12
v6.13
v6.14
v6.15
v6.16
v6.17
v6.18
v6.19
v6.2
v6.20
v6.21
v6.22
v6.23
v6.24
v6.3
v6.4
v6.5
v6.6
v6.7
v6.8
v6.8-1
v6.9
v7.*
v7.0
v7.0_beta1
v7.0_beta2
v7.0_beta3
v7.0_beta4
v7.1
v7.10
v7.11
v7.12
v7.13
v7.14
v7.15
v7.16
v7.17
v7.18
v7.19
v7.2
v7.20
v7.21
v7.22
v7.23
v7.24
v7.25
v7.26
v7.27
v7.28
v7.29
v7.3
v7.30
v7.4
v7.5
v7.6
v7.7
v7.8
v7.9
v8.*
v8.0
v8.0_beta1
v8.0_beta2
v8.0_beta3
v8.0_beta4
v8.1
v8.10
v8.11
v8.12
v8.13
v8.14
v8.15
v8.16
v8.17
v8.18
v8.19
v8.2
v8.20
v8.21
v8.22
v8.23
v8.24
v8.25
v8.26
v8.3
v8.4
v8.5
v8.6
v8.7
v8.8
v8.9
v9.*
v9.0
v9.0_beta1
v9.0_beta2
v9.0_beta3
v9.1
v9.10
v9.11
v9.12
v9.13
v9.14
v9.15
v9.16
v9.17
v9.18
v9.2
v9.3
v9.4
v9.5
v9.6
v9.7
v9.8
v9.9

Database specific

source 
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2018-10665.json"