cve/CVE-2024-25974.md at a8969e132322a214e7b78da5711159d6f891f0ab

admin/cve

mirror of https://github.com/0xMarcio/cve.git synced 2025-06-19 17:30:12 +00:00

0xMarcio 48a00929ac Removed duplicates

2024-06-18 02:51:15 +02:00

Description

The Frentix GmbH OpenOlat LMS is affected by stored a Cross-Site Scripting (XSS) vulnerability. It is possible to upload files within the Media Center of OpenOlat version 18.1.5 (or lower) as an authenticated user without any other rights. Although the filetypes are limited, an SVG image containing an XSS payload can be uploaded. After a successful upload the file can be shared with groups of users (including admins) who can be attacked with the JavaScript payload.

POC

Reference

http://seclists.org/fulldisclosure/2024/Feb/23
https://r.sec-consult.com/openolat

Github

No PoCs found on GitHub currently.

1.0 KiB Raw Blame History

CVE-2024-25974

Description

POC

Reference

Github

1.0 KiB

Raw Blame History