CVE-2022-31786

IdeaLMS 2022 allows reflected Cross Site Scripting (XSS) via the IdeaLMS/Class/Assessment/ PATH_INFO.
References
Link Resource
https://gist.github.com/RNPG/e10524f1781a9981b50fb27bb473b0fe Exploit Third Party Advisory
Configurations

Configuration 1 (hide)

cpe:2.3:a:ideaco:idealms:2022:*:*:*:*:*:*:*

Information

Published : 2022-06-21 08:15

Updated : 2022-06-28 14:03


NVD link : CVE-2022-31786

Mitre link : CVE-2022-31786


JSON object : View

CWE
CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Products Affected

ideaco

  • idealms